File Manager
Back to List
| Current Directory: ~/
Editing: staffletter.asp.bak
Full path: C:\ict\ICT\staffletter.asp.bak
Permissions: rwx
Write test: File appears not directly writable
Current process identity: IIS APPPOOL\DefaultAppPool
<!--#INCLUDE FILE="ConnectDB.asp"--> <!--#include file="chk_login.asp"--> <% pern=session("username") per="2" tb="letterin" sqlnc="select * from tb_permission where id_staff='"&pern&"' and tb_edit='"&per&"' and tb_name='"&tb&"'" set orsnc=server.createobject("adodb.recordset") orsnc.open sqlnc,conn,1,3 if not orsnc.eof then %> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> <html><!-- InstanceBegin template="/Templates/ict.dwt" codeOutsideHTMLIsLocked="false" --> <head> <!-- InstanceBeginEditable name="doctitle" --> <title>�к����ʹ�����͡�ú�����</title> <!-- InstanceEndEditable --> <meta http-equiv="Content-Type" content="text/html; charset=windows-874"> <!-- InstanceBeginEditable name="head" --><!-- InstanceEndEditable --> <link href="bsri2006.css" rel="stylesheet" type="text/css"> <link href="image/favicon.ico" rel="shortcut icon" type="image/x-icon"> </head> <body leftmargin="0" topmargin="0" marginwidth="0" marginheight="0"> <table width="100%" border="0"> <tr> <td colspan="2"><div align="right"><img src="Image/head1.gif" width="800" height="61"></div></td> </tr> <tr> <td colspan="2" background="Image/bghead1.gif"><div align="right"><font size="2" face="MS Sans Serif, Tahoma, sans-serif"><strong>| <a href="http://www.swu.ac.th" target=_blank>SWU</a> | <a href="http://bsri.swu.ac.th" target=_blank>BSRI</a> |<a href="chaPW.asp"><strong>Change Password</strong></a>|<a href="log_out.asp">Log Out </a></strong></font>|</div></td> </tr> <tr> <td width="20%" align="left" valign="top" bgcolor="#FFCCCC"><!-- InstanceBeginEditable name="EditRegion5" --><!--#include file="chk_menu.asp"--><!-- InstanceEndEditable --></td> <td width="77%" align="left" valign="top"><!-- InstanceBeginEditable name="EditRegion3" --> <div align="center"> <p>���������Ǣ�ͧ�˹ѧ���<br> �Ţ��� .. <% id=request("id") response.write id 'response.write orsn("titleletter") '���仹���繡�����͡��Һؤ�ҡ� response.write "[<a href=detail_letterin.asp?id="&id&">"&id&"</a>]" 'end if %> </p> <table width="70%" border="0"> <tr> <td width="59%" align="center" valign="top"><form name="form2" method="post" action="add_sletin.asp"> <table width="100%" border="0"> <tr> <td colspan="2"><div align="center">���������ż��������Ǣ�ͧ</div></td> </tr> <tr> <td>�Ţ���˹ѧ���</td> <td><INPUT TYPE="text" NAME="id" value=<%=id%> size="5" readonly="true"></td> </tr> <tr> <td>����</td> <td><select name="id_staff"> <option readonly>===��Ҩ����===</option> <% set orsl=server.createobject("adodb.recordset") sqll="select * from lecturer where statusdel = '1' order by name_lec" orsl.open sqll,Conn,1,3 if not orsl.eof then orsl.movefirst do while not orsl.eof response.write "<option value="&orsl("id_lecturer")&">"&orsl("name_lec")&" "&orsl("sur_lec")&" </option>" orsl.movenext loop end if %> <option>===���˹�ҷ��===</option> <% set orso=server.createobject("adodb.recordset") sqlo="select * from staff where statusdel = '1' order by name_st" orso.open sqlo,Conn,1,3 if not orso.eof then orso.movefirst do while not orso.eof response.write "<option value="&orso("id_staff")&">"&orso("name_st")&" "&orso("sur_st")&" </option>" orso.movenext loop end if %> </select> </td> </tr> <tr> <td>�ӴѺ���</td> <%sqlno="select * from staffletter where id_letter='"&id&"' order by id_level asc" set orsno=server.createobject("adodb.recordset") orsno.open sqlno,conn,1,3 if not orsno.eof then orsno.movelast id_level=orsno("id_level")+1 end if %> <td><input name="id_level" type="text" size="10" value=<%=id_level%>></td> </tr> <tr> <td colspan="2"><div align="center"> <input type="submit" name="Submit2" value="Submit"> </div></td> </tr> </table> </form> </td> </tr> <br></td> </tr> <tr> <td colspan="2" align="center" valign="top" bgcolor="#CCFFFF">��ª��ͼ��������Ǣ�ͧ�˹ѧ���<br> <% sqlall="select * from staffletter where id_letter='"&id&"' order by id_level" set orsall=server.CreateObject("adodb.recordset") orsall.open sqlall,conn,1,3 if not orsall.eof then %> <br> <table width="400" border="1"> <tr> <td><div align="center"><strong>�ӴѺ���</strong></div></td> <td><div align="center"><strong>����-ʡ��</strong></div></td> <td><div align="center"><strong>Action</strong></div></td> </tr> <% orsall.movefirst do while not orsall.eof response.write "<tr><td>"&orsall("id_level") response.Write "<td>" sqlch="select * from lecturer where id_lecturer='"&orsall("id_staff")&"'" set orsch=server.CreateObject("adodb.recordset") orsch.open sqlch,conn,1,3 if not orsch.eof then response.Write orsch("name_lec")&" "&orsch("sur_lec") else sqlch2="select * from staff where id_staff='"&orsall("id_staff")&"'" set orsch2=server.CreateObject("adodb.recordset") orsch2.open sqlch2,conn,1,3 if not orsch2.eof then response.Write orsch2("name_st")&" "&orsch2("sur_st") end if end if response.Write orsall("id_staff") response.Write "<td>" %> [<a href=del_sletin.asp?id=<%=orsall("id_letter")%>&id_s=<%=orsall("id_staff")%> onClick="return confirm('�����Ҩ�ź?');">Del</a>] <% orsall.movenext loop %> </table> <% else response.write "No Data" end if %> </td> </tr> </table> <p> </p> <p> <% 'end if %> </p> </div> <!-- InstanceEndEditable --></td> </tr> <tr> <td colspan="2" background="Image/bghead1.gif">Contact Admin:: wassanaw@swu.ac.th tel.02-649-5000 ext 17600</td> </tr> </table> </body> <!-- InstanceEnd --></html> <% else %> <SCRIPT LANGUAGE="JavaScript"> <% response.write "window.location.href='index.html';" %> --> </SCRIPT> <% end if %>