File Manager
Back to List
| Current Directory: ~/
Editing: command_detail.asp.bak
Full path: C:\ict\ICT\command_detail.asp.bak
Permissions: rwx
Write test: File appears not directly writable
Current process identity: IIS APPPOOL\DefaultAppPool
<!--#INCLUDE FILE="connectdb.asp"--> <!--#include file="inc_cache_control.asp"--> <!--#include file="inc_access_control.asp"--> <!--#include file="chk_login.asp"--> <script language="javascript"> function doSubmit() { if( document.form1.cname.value == "" ) { alert("��سҡ�͡���ͤ����") document.form1.cname.focus() return false; } } </script> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> <html><!-- InstanceBegin template="/Templates/ict.dwt" codeOutsideHTMLIsLocked="false" --> <head> <!-- InstanceBeginEditable name="doctitle" --> <title>�к����ʹ�����͡�ú�����</title> <!-- InstanceEndEditable --> <meta http-equiv="Content-Type" content="text/html; charset=windows-874"> <!-- InstanceBeginEditable name="head" --><!-- InstanceEndEditable --> <link href="bsri2006.css" rel="stylesheet" type="text/css"> <link href="image/favicon.ico" rel="shortcut icon" type="image/x-icon"> </head> <body leftmargin="0" topmargin="0" marginwidth="0" marginheight="0"> <table width="100%" border="0"> <tr> <td colspan="2"><div align="right"><img src="Image/head1.gif" width="800" height="61"></div></td> </tr> <tr> <td colspan="2" background="Image/bghead1.gif"><div align="right"><font size="2" face="MS Sans Serif, Tahoma, sans-serif"><strong>| <a href="http://www.swu.ac.th" target=_blank>SWU</a> | <a href="http://bsri.swu.ac.th" target=_blank>BSRI</a> |<a href="chaPW.asp"><strong>Change Password</strong></a>|<a href="log_out.asp">Log Out </a></strong></font>|</div></td> </tr> <tr> <td width="20%" align="left" valign="top" bgcolor="#FFCCCC"><!-- InstanceBeginEditable name="EditRegion5" --><!--#include file="chk_menu.asp"--><!-- InstanceEndEditable --></td> <td width="77%" align="left" valign="top"><!-- InstanceBeginEditable name="EditRegion3" --> <table width="100%" border="0" cellspacing="0"> <% '***************************************************************** session("tb_name")="command" %> <!--#include file="chk_permission.asp"--> <% '***************************************************************** if session("tb_edit") <> 1 then '���Է��� �����㹰ҹ ��� ����Ңͧ�������ͧ credirect=request("crd") %> <form name="form1" method="post" action="command_save_edit.asp"> <tr> <td width="892" align="left" valign="top"><div align="center">[<a href=index_com.asp>˹���á�����</a>] <%if session("tb_edit")=2 then %>[<a href=command_add_form.asp?crd=<%=1%>>+����� Thesis+</a>][<a href=command_add_form.asp>+����觷����+</a>][<a href="command_add_author_form.asp">+������ª��ͼ���͡�����+</a>]<%end if%><br><br>��������´����� <table align=center border=0> <tr> <% cid=request("id") 'response.write cid set orsde=server.createobject("adodb.recordset") sqlde="select * from commando where cid='"&cid&"'" orsde.open sqlde,Conn,1,3 if not orsde.eof then response.write "<tr bgcolor=#E5E5E5><td ><div align=right>���ʤ����::</td><td>"'&orsde("cid") %><%=orsde("cid")%> </td></tr> <% response.write "<tr ><td ><div align=right>������Ţ���::</td><td>"'&orsde("cno") %><%=orsde("cno")%> </td></tr> <% response.write "<tr bgcolor=#E5E5E5><td ><div align=right>�� �.�.::</td><td>"'&orsde("cyear") %><%=orsde("cyear")%> </td></tr> <tr><td ><div align=right>����͡�����</td><td> <% set ors_=server.createobject("adodb.recordset") sqlmark_="select * from command_author where cid_author='"&orsde("cid_author")&"'" ors_.open sqlmark_,Conn,1,3 if not ors_.eof then response.write ors_("cauthor") end if %> <% if credirect="1" then response.write "<tr bgcolor=#E5E5E5><td ><div align=right>���ʹ��Ե.::</td>" response.write "<td><input type=text name=id_stu style=font-size:16px value="&orsde("id_stu")&">" sqlstu="select name_stu,sur_stu,id_stu from student where id_stu='"&orsde("id_stu")&"'" set orsstu=server.createobject("adodb.recordset") orsstu.open sqlstu,conn,1,3 if not orsstu.eof then response.write orsstu("name_stu")&" "&orsstu("sur_stu") end if '����������ͺ %> <tr><td>����������ͺ<td> <SELECT NAME="id_type_command"> <% ' id_type_command=cint(orsde("id_type_command")) id_type_command=orsde("id_type_command") sqltc="select * from command_type" set orstc=server.createobject("adodb.recordset") orstc.open sqltc,conn,1,3 if not orstc.eof then orstc.movefirst do while not orstc.eof %> <option <% ' if cint(orstc("id_type_command"))=cint(id_type_command) then if orstc("id_type_command")=id_type_command then %> value=<%=id_type_command%> selected <%else%> value=<%=orstc("id_type_command")%> <%end if%>> <%=orstc("type_command")%> <%'=id_type_res%><%'=orsbt("id_type_res")%> </option> <% orstc.movenext loop end if %></SELECT> <% '''����������ͺ else response.write "<tr bgcolor=#E5E5E5><td ><div align=right>���ͤ����.::</td><td><textarea cols=60 rows=3 name=cname style=font-size:16px>"&orsde("cname")&"</textarea>" end if response.write "<tr><td ><div align=right>��������´�����.::</td><td><textarea cols=60 rows=3 name=cdetail style=font-size:16px>"&orsde("cdetail")&"</textarea>" response.write "<tr bgcolor=#E5E5E5><td ><div align=right>������ѹ���.::</td><td>"'&orsde("cdate2")+orsde("cmonth2")+orsde("cyear2") 'response.write numday=Array("01","02","03","04","05","06","07","08","09","10","11","12","13","14","15","16","17","18","19","20","21","22","23","24","25","26","27","28","29","30","31") i=lbound(numday) dayleft=orsde("cdate2") %> <select name="cdate2" style="font-size:16px"> <% do while i<=ubound(numday) %> <option <% if numday(i)=dayleft then %> value=<%=dayleft%> selected <%else%> value=<%=numday(i)%><%end if%>><%=numday(i)%></option> <% i=i+1 loop %> </select> �� <% monthmid=orsde("cmonth2") 'response.write monthmid nummonth=array("01","02","03","04","05","06","07","08","09","10","11","12") nummonthth=array("���Ҥ�","����Ҿѹ��","�չҤ�","����¹","����Ҥ�","�Զع�¹","�á�Ҥ�","�ԧ�Ҥ�","�ѹ��¹","���Ҥ�","��Ȩԡ�¹","�ѹ�Ҥ�") ii=lbound(nummonth) iii=lbound(nummonthth)%> <select name="cmon2" style="font-size:16px"> <% do while ii<=ubound(nummonth) %> <option <% if nummonth(ii)=monthmid then%> value=<%=monthmid%> selected <%else%> value=<%=nummonth(ii)%><%end if%>><%=nummonthth(iii)%></option> <%ii=ii+1 iii=iii+1 loop %> </select> �.�. <input type="text" name="cyear2" onkeypress='if (event.keyCode < 46 || event.keyCode >57 ) event.returnValue=false;' value=<%=orsde("cyear2")%> style="font-size:16px"> <% response.write "<tr><td ><div align=right>��� � �ѹ���.::</td><td>"'&orsde("cdate3")+orsde("cmonth3")+orsde("cyear3") numday=Array("01","02","03","04","05","06","07","08","09","10","11","12","13","14","15","16","17","18","19","20","21","22","23","24","25","26","27","28","29","30","31") i=lbound(numday) dayleft=orsde("cdate3") %> <select name="cdate3" style="font-size:16px"> <option value=00>-</option> <% do while i<=ubound(numday) %> <option <% if numday(i)=dayleft then %> value=<%=dayleft%> selected <%else%> value=<%=numday(i)%><%end if%>><%=numday(i)%></option> <% i=i+1 loop %> </select> �� <% monthmid=orsde("cmonth3") 'response.write monthmid nummonth=array("01","02","03","04","05","06","07","08","09","10","11","12") nummonthth=array("���Ҥ�","����Ҿѹ��","�չҤ�","����¹","����Ҥ�","�Զع�¹","�á�Ҥ�","�ԧ�Ҥ�","�ѹ��¹","���Ҥ�","��Ȩԡ�¹","�ѹ�Ҥ�") ii=lbound(nummonth) iii=lbound(nummonthth)%> <select name="cmon3" style="font-size:16px"> <option value=00>-</option> <% do while ii<=ubound(nummonth) %> <option <% if nummonth(ii)=monthmid then%> value=<%=monthmid%> selected <%else%> value=<%=nummonth(ii)%><%end if%>><%=nummonthth(iii)%></option> <%ii=ii+1 iii=iii+1 loop %> </select> �.�. <input style="font-size:16px" type="text" name="cyear3" onkeypress='if (event.keyCode < 46 || event.keyCode >57 ) event.returnValue=false;' value=<%=orsde("cyear3")%> > <% response.write "<tr bgcolor=#E5E5E5><td ><div align=right>file::</td><td >" cft=orsde("cid")+".pdf" if orsde("cfile")=cft then response.write "[<a href=command/"&orsde("cfile")&" target=_blank>Download</a>]" else response.write "[Not found]" end if response.write "[<a href=command_upload_form.asp?id="&cid&">Upload</a>]" response.write "[<a href=command_remove_file.asp?id="&cid&">Remove</a>]" response.write "<tr ><td colspan=2><div align=right><td>" if credirect="1" then %> <input type="hidden" name="crd" value="1" > <% end if %> <input type="hidden" name="cid" value=<%=cid%> > <tr><td colspan=3 align=center><input type="submit" name="Submit" value="Submit" onmousedown="doSubmit();"> <input type="reset" name="Submit2" value="Reset"></td></tr> <% 'response.write "<tr><td><div align=right>���ʤ����::</td><td>"&* </td></tr>" 'response.write "<tr><td><div align=right>���ͤ����::</td><td><textarea cols=60 rows=3 name=cname></textarea>* </td></tr>" 'response.write "<tr><td><div align=right>��������´::</td><td><textarea cols=60 rows=3 name=cdetail></textarea> </td></tr>" 'response.write "<tr> <td align=right>������ѹ���<td>" 'response.write "<input type=text size=15 id=datepicker-th-2 name=date0 style=font-size=16px/>mm/dd/yyyy*</tr>" 'response.write "<tr> <td align=right>��� � �ѹ���<td>" 'response.write "<input type=text size=15 id=datepicker-th name=date1 style=font-size=16px/>mm/dd/yyyy</tr>" 'response.write "<tr><td><div align=right>��������Ԫ�(��)::</td><td><input type=text name=course_th size=50>*</td></tr>" 'response.write "<tr><td><div align=right>��������Ԫ�(Eng)::</td><td><input type=text name=course_eng size=50>*</td></tr>" 'conn.close else end if %> </div></td> </tr> <!-- <tr bgcolor=#EAEAEA><td colspan=3 align=center >��ª��ͼ���͡����觷����� <tr align=center bgcolor=#B8B589><td>�ӴѺ���<td>���ͼ���͡�����<td>Action</tr><tr>--> <% 'sqlcr="select * from command_author" 'set orscr=server.createobject("adodb.recordset") 'orscr.open sqlcr,conn,1,3 ' aa=0 ' if not orscr.eof then ' orscr.movefirst ' do while not orscr.eof ' aa=aa+1 ' if aa mod 2 = 0 then ' bg1="#EEEEEE" ' else ' bg1="#FFFFFF" ' end if ' response.write "<tr bgcolor="&bg1&"><td>"&aa&"<td>"&orscr("cauthor")%> <!-- <td>[<a href=command_del_author.asp?id=<%'=orscr("cid_author")%> onclick="return confirm('�س��ͧ���ź?');">Del</a>]--> <%'response.write "[<a href=command_edit_author_form.asp?id="&orscr("cid_author")&">Edit</a>]" 'orscr.movenext 'loop 'end if %> </table> <% else '���Է� response.write "<tr><td colspan=3><center>�س������Է����� �س���ѵԹ��" response.write "<meta http-equiv=refresh content =4;url=javascript:history.back();>" '���Է� end if '���Է� %> </table> <!-- InstanceEndEditable --></td> </tr> <tr> <td colspan="2" background="Image/bghead1.gif">Contact Admin:: wassanaw@swu.ac.th tel.02-649-5000 ext 17600</td> </tr> </table> </body> <!-- InstanceEnd --></html>