| Server IP : 122.155.17.190 / Your IP : 216.73.216.89 Web Server : Apache/2 System : Linux cat17190.thaihostserver.com 5.10.0-21-amd64 #1 SMP Debian 5.10.162-1 (2023-01-21) x86_64 User : bungkla ( 1054) PHP Version : 5.6.40 Disable Function : exec,system,passthru,shell_exec,proc_close,proc_open,dl,popen,show_source,posix_kill,posix_mkfifo,posix_getpwuid,posix_setpgid,posix_setsid,posix_setuid,posix_setgid,posix_seteuid,posix_setegid,posix_uname MySQL : ON | cURL : ON | WGET : OFF | Perl : OFF | Python : OFF | Sudo : OFF | Pkexec : OFF Directory : /home/bungkla/domains/bungkla.go.th/private_html/contacts/ |
Upload File : |
<?
session_start();
Header("Content-Type: text/html; charset=UTF-8");
if($_SESSION[user]=="")
{
session_destroy();
$message = "กรุณา Login ก่อน.";
$url = "../admin/index.php";
include("../admin/alert.php");
exit;
}
if($_GET["c_id"])
{
$c_id = $_GET["c_id"];
}else
{
$c_id = $_POST["c_id"];
}
if(!isset($c_id) || empty($c_id))
{
die;exit;
}
include("../include/config.php");
include("../include/function.php");
include("../include/config_db.php");
$c_caf_file1 = "";$c_caf_file2 = "";$c_caf_file3 = "";$c_caf_file4 = "";$c_caf_file5 = "";
if($_POST["chk_edit"]==1)
{
$s_con_send = $_POST["s_con_send"];
$s_con_name = $_POST["s_con_name"];
$s_con_email = $_POST["s_con_email"];
$s_con_message = $_POST["s_con_message"];
//$s_con_message = htmlspecialchars($s_con_message);
//$s_con_message = strip_tags($s_con_message);
// Remove CDATA blocks. ;)
//$s_con_message = preg_replace('#\<\!\[CDATA\[(.*?)\]\]\>#s', '', $s_con_message);
// Other control characters
//$s_con_message = preg_replace('#(?:[\x00-\x1F\x7F]+|(?:\xC2[\x80-\x9F])+)#', '', $s_con_message);
//$order = array("\r\n", "\n", "\r");
//$replace = '<br>';
//$s_con_message = str_replace($order, $replace, $s_con_message);
//$s_con_message = str_replace('"', "'", $s_con_message);
$s_con_ip_connect = $_SERVER["REMOTE_ADDR"];
if($s_con_message != ''){
$sql = "update `contact_admin_detail` set `con_send`='$s_con_send',`con_send_name`='$s_con_name',`con_send_email`='$s_con_email',`con_send_message`='$s_con_message',`con_send_date`=now(),`con_send_ip`='$s_con_ip_connect' where (`id`='".$c_id."') ";
$dbquery = mysql_query($sql) or die("ไม่สามารถบันทึกข้อมูลได้ !B");
$sql = "select * from `contact_admin_adminfiles` where (`cad_id`='".$c_id."')";
$dbquery = mysql_query($sql) or die("Can't send query !C");
$num_rows_adf = mysql_num_rows($dbquery);
if(isset($c_id)){
for($i=0;$i<count($_FILES["attfiles"]["name"]);$i++)
{
if($_FILES["attfiles"]["name"][$i] != "")
{
$sur_num_text = strrchr($_FILES['attfiles']['name'][$i], ".");
$sur_num = strlen($sur_num_text);
$file_name_sur = htmlspecialchars($_FILES['attfiles']['name'][$i]);
$file_name = substr($file_name_sur,0,strlen($file_name_sur) - $sur_num);
if(strlen($file_name)>230){
$file_name = substr($file_name,0,230);
}
$sur1 = strrchr($_FILES['attfiles']['name'][$i], "."); //ตัดนามสกุลไฟล์เก็บไว
$name = $file_name."_".$i."_".(Date("dmy_His").$sur1);
//$filename_upload = iconv("tis-620","utf-8",$name);
$filename_upload = $name;
if(move_uploaded_file($_FILES["attfiles"]["tmp_name"][$i],"./adminattachfiles/".$filename_upload))
{
if(empty($c_caf_file1)){$c_caf_file1 = $name;}else{
if(empty($c_caf_file2)){$c_caf_file2 = $name;}else{
if(empty($c_caf_file3)){$c_caf_file3 = $name;}else{
if(empty($c_caf_file4)){$c_caf_file4 = $name;}else{
if(empty($c_caf_file5)){$c_caf_file5 = $name;}}}}}
}
}
}//for
if(($c_caf_file1 != '') or ($c_caf_file2 != '') or ($c_caf_file3 != '') or ($c_caf_file4 != '') or ($c_caf_file5 != '')){
if($num_rows_adf <=0 ){
$adfSQL = "INSERT INTO `contact_admin_adminfiles` (`cad_id`,`caf_created`,`caf_file1`,`caf_file2`,`caf_file3`,`caf_file4`,`caf_file5`) VALUES ('$c_id',now(),'$c_caf_file1','$c_caf_file2','$c_caf_file3','$c_caf_file4','$c_caf_file5')";
} else {
$adfSQL = "UPDATE `contact_admin_adminfiles` set `caf_created`=now(),`caf_file1`='$c_caf_file1',`caf_file2`='$c_caf_file2',`caf_file3`='$c_caf_file3',`caf_file4`='$c_caf_file4',`caf_file5`='$c_caf_file5' where (`cad_id`='".$c_id."') ";
}
$Result1 = mysql_query($adfSQL) or die(mysql_error());
}
}
}
}
$sql = "select * from `contact_admin_detail` where (`id`='$c_id')";
$dbquery = mysql_query($sql) or die("Can't send query !C");
$num_rows = mysql_num_rows($dbquery);
$c_con_id = 0;
$c_con_name = '';
$c_con_email = '';
$c_con_phone = '';
$c_con_title = '';
$c_con_message = '';
$c_con_date = '';
$c_con_ip_connect = '';
$c_con_send = '';
$c_con_send_name = '';
$c_con_send_email = '';
$c_con_send_message = '';
$c_con_send_date = '';
if($num_rows>0)
{
$c_con_id = mysql_result($dbquery, 0,"con_id");
$c_con_name = mysql_result($dbquery, 0,"con_name");
$c_con_email = mysql_result($dbquery, 0,"con_email");
$c_con_phone = mysql_result($dbquery, 0,"con_phone");
$c_con_title = mysql_result($dbquery, 0,"con_title");
$c_con_message = mysql_result($dbquery, 0,"con_message");
$c_con_date = mysql_result($dbquery, 0,"con_date");
$c_con_ip_connect = mysql_result($dbquery, 0,"con_ip_connect");
$c_con_send = mysql_result($dbquery, 0,"con_send");
$c_con_send = $c_con_send +1;
$c_con_send_name = mysql_result($dbquery, 0,"con_send_name");
$c_con_send_email = mysql_result($dbquery, 0,"con_send_email");
$c_con_send_message = mysql_result($dbquery, 0,"con_send_message");
$c_con_send_date = mysql_result($dbquery, 0,"con_send_date");
}
mysql_free_result($dbquery);
unset($dbquery);
$c_con_category = "";
$c_con_admin_email = "";
$c_con_admin_email_password = "";
$c_con_admin_email_server = "";
$sql_m = "select * from `contact_admin` where (`id`='$c_con_id') ";
$result_m = mysql_query($sql_m);
$num_rows_m = mysql_num_rows($result_m);
if($num_rows_m>0){
$c_con_category = mysql_result($result_m, 0,"con_category");
$c_con_admin_email = mysql_result($result_m, 0,"con_email");
$c_con_admin_email_password = mysql_result($result_m, 0,"con_email_password");
$c_con_admin_email_server = mysql_result($result_m, 0,"con_email_server");
}
mysql_free_result($result_m);
unset($result_m);
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<title></title>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<link href="svstyles.css?v=<?php echo filemtime('svstyles.css');?>" rel="stylesheet" type="text/css" />
<link href="Hoverable.css" rel="stylesheet" type="text/css" />
<SCRIPT LANGUAGE='Javascript' type="text/javascript">
function s_check(){
if(document.getElementById('s_con_name').value == "")
{
alert("'ชื่อผู้ตอบ' จำเป็นต้องมีข้อมูล !");
document.getElementById('s_con_name').focus();
return false;
}
if(document.getElementById('s_con_email').value == "")
{
alert("กรุณาใส่อีเมล์คุณ");
document.getElementById('s_con_email').focus();
return false;
}
var emailf = /^[a-z][a-z_0-9\-\.]+@[a-z_0-9\.\-]+\.[a-z]{2,3}$/i
function validateEmail(str) {
return emailf.test(str)
}
if(validateEmail(document.getElementById('s_con_email').value)==false)
{
alert("กรุณาใส่อีเมล์ที่ถูกต้อง");
document.getElementById('s_con_email').value="";
document.getElementById('s_con_email').focus();
return false;
}
if(document.getElementById('s_con_message').value == "")
{
alert("'ข้อความที่ตอบ' จำเป็นต้องมีข้อมูล !");
document.getElementById('s_con_message').focus();
return false;
}
}
</SCRIPT>
<style type="text/css">
<!--
body {
margin-left: 0px;
margin-top: 0px;
margin-right: 0px;
margin-bottom: 0px;
background-color: #ffffff;
font-family: 'Kanit', sans-serif;
}
-->
</style>
<style type="text/css">
<!--
a:link {
text-decoration: none;
}
a:visited {
text-decoration: none;
}
a:hover {
text-decoration: none;
}
a:active {
text-decoration: none;
}
.style5 {color: #000000; font-weight: bold; }
.style6 {color: #000000}
-->
</style>
<link rel="icon" href= "../logo/logo01.png" type="image/x-icon"/>
<!--font-->
<link href="https://fonts.googleapis.com/css?family=Chakra+Petch|Kanit|Pridi&display=swap" rel="stylesheet">
</head>
<body style="background-repeat:no-repeat; background-position:top">
<!-- content -->
<div align="center">
<table width="980" border="0" align="center" cellpadding="0" cellspacing="0">
<tr>
<td align="center" valign="top"><a href="/index.php"><img src="../images/bn_home.png" width="150" height="53" border="0" /></a></td>
</tr>
<tr>
<td valign="top"><div align="center"></div></td>
</tr>
<tr>
<td valign="top"> </td>
</tr>
</table>
</div></td>
</tr>
<tr>
<td height="0" align="center" valign="top"> </td>
</tr>
<tr>
<td align="center" valign="top"><table width="980" border="0" align="center" cellpadding="0" cellspacing="0">
<tr>
<th align="center" valign="top" scope="col"><table width="980" border="0" align="center" cellpadding="0" cellspacing="0">
<tr>
<th align="center" valign="top" scope="col">
<table width="960" border="0" align="center" cellpadding="0" cellspacing="0">
<tr>
<th height="5" align="center" valign="top" scope="col"> </th>
</tr>
<tr>
<td align="center" valign="top">
<table width="960" border="0" align="center" cellpadding="0" cellspacing="0">
<tr>
<th valign="top" scope="col"><div align="center">
<table width="90%" border="0" cellspacing="0" cellpadding="0" align="center">
<tr><td height="5" valign="top"> <a name="toppage"></a></td>
</tr>
<tr>
<td><div align="center"></div></td>
</tr>
<tr>
<td ><div align="right"><a href="../admin/main.php" class="styles2">หน้า Admin </a>| <a href="admin.php#top_page">หน้าหลัก </a>| <a href="../admin/signout.php" >ออกจากระบบ </a></div></td>
</tr>
</table>
</div></th>
</tr>
<tr>
<td valign="top">
<div id="main">
<div align="center"><? echo "<font size='3'><b> ".$c_con_category." </b></font>"; ?><a name="top_page"></a></div>
<div style="position: relative; left: 5px; top: 10px; width: 955px; border: 1px solid #e5e5e5;" class="magnifyarea">
<table border="0" cellpadding="1" cellspacing="0" align="center">
<tr>
<td colspan="2" height="15"></td>
</tr>
<tr>
<td align="right" width="20%"><font class="textblackb">ชื่อผู้ส่ง :</font> </td>
<td><font class="textgray"><?=$c_con_name;?></font></td>
</tr>
<tr>
<td align="right"><font class="textblackb">อีเมล์ผู้ส่ง :</font> </td>
<td><font class="textgray"><?=$c_con_email;?></font></td>
</tr>
<tr>
<td align="right"><font class="textblackb">โทรศัพท์ :</font> </td>
<td><font class="textgray"><?=$c_con_phone;?></font></td>
</tr>
<tr>
<td align="right"><font class="textblackb">เรื่อง :</font> </td>
<td><font class="textgray"><?=$c_con_title;?></font></td>
</tr>
<tr>
<td align="right" valign="top"><font class="textblackb">ข้อความ :</font> </td>
<td><div style="width:600px; text-align: justify; text-justify: inter-word;" class="textgray"><?=$c_con_message;?></div></td>
</tr>
<tr>
<td align="right"><font class="textblackb">ส่งจาก IP :</font> </td>
<td ><font class="textgray"><?=$c_con_ip_connect;?></font></td>
</tr>
<tr>
<td align="right"><font class="textblackb">เมื่อวันที่ :</font> </td>
<td ><font class="textgray"><? echo dateThai_MM($c_con_date);?></font></td>
</tr>
<tr>
<td colspan="2" height="10"></td>
</tr>
<?
if($_POST["chk_edit"]==1)
{
?>
<tr>
<td colspan='2'>
<div align='center'><br /><br /><font size='4' color='red'>ตอบข้อมูลนี้แล้ว <a href='admin.php?#top_page' title='กลับหน้าหลัก'>กลับหน้าหลัก</a></font></div><br /><br /> </td>
</tr>
<tr>
<td align="right" width="15%"><font class="textblackb">ชื่อผู้ตอบ :</font> </td>
<td><font class="textgray"><?=$c_con_send_name;?></font></td>
</tr>
<!--<tr>
<td align="right"><font class="textblackb">อีเมล์ผู้ตอบ :</font> </td>
<td><font class="textgray"><?=$c_con_send_email;?></font></td>
</tr> -->
<tr>
<td align="right" valign="top"><font class="textblackb">ข้อความที่ตอบ : </font></td>
<td><div style="width:600px; text-align: justify; text-justify: inter-word;" class="textgray"><?=$c_con_send_message;?></div></td>
</tr>
<tr>
<td colspan="2" height="10"></td>
</tr>
<?
$sql = "select * from `contact_admin_adminfiles` where (`cad_id`='$c_id')";
$dbquery = mysql_query($sql) or die("Can't send query !C");
$num_rows = mysql_num_rows($dbquery);
$c_caf_file1 = '';$c_caf_file2 = '';$c_caf_file3 = '';$c_caf_file4 = '';$c_caf_file5 = '';
if($num_rows>0)
{
$c_caf_file1 = mysql_result($dbquery, 0,"caf_file1");
$c_caf_file2 = mysql_result($dbquery, 0,"caf_file2");
$c_caf_file3 = mysql_result($dbquery, 0,"caf_file3");
$c_caf_file4 = mysql_result($dbquery, 0,"caf_file4");
$c_caf_file5 = mysql_result($dbquery, 0,"caf_file5");
mysql_free_result($dbquery);
unset($dbquery);
}
if($num_rows>0){
?>
<tr>
<td> </td>
<td><font class="textblackb">เอกสารประกอบการตอบ</font> </td>
</tr>
<tr>
<td align="right"> </td>
<td >
<?if($c_caf_file1 != ''){?>
<div>เอกสารประกอบ 1. <a href="<?echo "./adminattachfiles/".$c_caf_file1;?>" class="textgray" title="" target="_blank"><? echo $c_caf_file1;?></a></div>
<?}?>
<?if($c_caf_file2 != ''){?>
<div>เอกสารประกอบ 2. <a href="<?echo "./adminattachfiles/".$c_caf_file2;?>" class="textgray" title="" target="_blank"><? echo $c_caf_file2;?></a></div>
<?}?>
<?if($c_caf_file3 != ''){?>
<div>เอกสารประกอบ 3. <a href="<?echo "./adminattachfiles/".$c_caf_file3;?>" class="textgray" title="" target="_blank"><? echo $c_caf_file3;?></a></div>
<?}?>
<?if($c_caf_file4 != ''){?>
<div>เอกสารประกอบ 4. <a href="<?echo "./adminattachfiles/".$c_caf_file4;?>" class="textgray" title="" target="_blank"><? echo $c_caf_file4;?></a></div>
<?}?>
<?if($c_caf_file5 != ''){?>
<div>เอกสารประกอบ 5. <a href="<?echo "./adminattachfiles/".$c_caf_file5;?>" class="textgray" title="" target="_blank"><? echo $c_caf_file5;?></a></div>
<?}?>
</td>
</tr>
<tr>
<td colspan="2" height="10"></td>
</tr>
<?
}
}else
{
?>
<tr>
<td colspan="2">
<form name="form_answer" method="post" enctype="multipart/form-data" action="answer.php?#toppage" onSubmit="return s_check();">
<table border="0" cellpadding="0" cellspacing="0" align="center">
<tr>
<td colspan="2" height="15"></td>
</tr>
<tr>
<td align="right" width="20%"><font class="textblack">ชื่อผู้ตอบ :</font> </td>
<td><input type="text" name="s_con_name" id="s_con_name" size="30" maxlength="100" class="textblack"></td>
</tr>
<tr>
<td colspan="2" height="3"></td>
</tr>
<!--<tr>
<td align="right"><font class="textblack">อีเมล์ผู้ตอบ :</font> </td>
<td><input type="text" name="s_con_email" id="s_con_email" size="30" maxlength="100" class="textblack" value="<?=$c_con_admin_email;?>" readonly="true"></td>
</tr> -->
<tr>
<td colspan="2" height="3"></td>
</tr>
<tr>
<td align="right" valign="top"><font class="textblack">ข้อความที่ตอบ : </font></td>
<td><textarea name="s_con_message" id="s_con_message" cols="70" rows="10" maxlength="255" class="textblack"></textarea></td>
</tr>
<tr>
<td colspan="2" height="10"></td>
</tr>
<tr>
<td> </td>
<td valign="top"><font color="#ffoooo">เอกสารประกอบ (ไฟล์รูปภาพ หรือ pdf ขนาดไฟล์รวมกันไม่เกิน 100M)</font> </td>
</tr>
<tr>
<td style="text-align:right" valign="top"> </td>
<td><br>
เอกสารประกอบ 1 <input type="file" name="attfiles[]"><br><br>
เอกสารประกอบ 2 <input type="file" name="attfiles[]"><br><br>
เอกสารประกอบ 3 <input type="file" name="attfiles[]"><br><br>
เอกสารประกอบ 4 <input type="file" name="attfiles[]"><br><br>
เอกสารประกอบ 5 <input type="file" name="attfiles[]"><br><br>
</td>
</tr>
<tr>
<td colspan="2" height="10"></td>
</tr>
<tr>
<td> </td>
<td>
<input type="hidden" name="c_id" value="<? if($c_id){ echo $c_id;}else{ echo '';}?>">
<input type="hidden" name="s_con_send" value="<? if($c_con_send){ echo $c_con_send;}else{ echo '';}?>">
<input type="hidden" name="chk_edit" value="1">
<!--<input type="hidden" name="s_con_email" id="s_con_email" value="<?//=$c_con_admin_email;?>"> -->
<input type="submit" name="submit" value=" ส่งข้อความ ">
<input type="reset" name="reset" value=" คีย์ข้อมูลใหม่ "> </td>
</tr>
<tr><td colspan=2 height="10"></td></tr>
</table>
</form> </td>
</tr>
<?
}
?>
</table>
</div>
</div>
<?
if($_POST["chk_edit"]==1)
{
$s_con_title = "Re : ".$c_con_title;
require("PHPMailer_v5.1/class.phpmailer.php");
function smtpmail( $email , $subject , $body, $uemail, $uemailpass, $uemailserver, $uname )
{
$mail = new PHPMailer();
$mail->IsSMTP();
$mail->CharSet = "utf-8"; // ในส่วนนี้ ถ้าระบบเราใช้ tis-620 หรือ windows-874 สามารถแก้ไขเปลี่ยนได้
$mail->Host = $uemailserver; // mail server ของเรา
$mail->SMTPAuth = true; // เลือกการใช้งานส่งเมล์ แบบ SMTP
$mail->Username = $uemail; // account e-mail ของเราที่ต้องการจะส่ง
$mail->Password = $uemailpass; // รหัสผ่าน e-mail ของเราที่ต้องการจะส่ง
$mail->From = $uemail; // account e-mail ของเราที่ใช้ในการส่งอีเมล
$mail->FromName = $uname; // ชื่อผู้ส่งที่แสดง เมื่อผู้รับได้รับเมล์ของเรา
$mail->AddAddress($email); // Email ปลายทางที่เราต้องการส่ง(ไม่ต้องแก้ไข)
$mail->IsHTML(true); // ถ้า E-mail นี้ มีข้อความในการส่งเป็น tag html ต้องแก้ไข เป็น true
$mail->Subject = $subject; // หัวข้อที่จะส่ง(ไม่ต้องแก้ไข)
$mail->Body = $body; // ข้อความ ที่จะส่ง(ไม่ต้องแก้ไข)
$result = $mail->send();
return $result;
}
if(!empty($c_con_email) && isset($c_con_email))
{
if(($c_caf_file1 != '') or ($c_caf_file2 != '') or ($c_caf_file3 != '') or ($c_caf_file4 != '') or ($c_caf_file5 != '')){
$s_con_message .= "<br>";
$_server_ = $_SERVER["SERVER_NAME"];
if($c_caf_file1 != ''){
$s_con_message .= '<div>เอกสารประกอบ 1. <a href="'.$_server_.'/contacts/adminattachfiles/'.$c_caf_file1.'" class="textgray" title="" target="_blank">'.$c_caf_file1.'</a></div>';
}
if($c_caf_file2 != ''){
$s_con_message .= '<div>เอกสารประกอบ 2. <a href="'.$_server_.'/contacts/adminattachfiles/'.$c_caf_file2.'" class="textgray" title="" target="_blank">'.$c_caf_file2.'</a></div>';
}
if($c_caf_file3 != ''){
$s_con_message .= '<div>เอกสารประกอบ 3. <a href="'.$_server_.'/contacts/adminattachfiles/'.$c_caf_file3.'" class="textgray" title="" target="_blank">'.$c_caf_file3.'</a></div>';
}
if($c_caf_file4 != ''){
$s_con_message .= '<div>เอกสารประกอบ 4. <a href="'.$_server_.'/contacts/adminattachfiles/'.$c_caf_file4.'" class="textgray" title="" target="_blank">'.$c_caf_file4.'</a></div>';
}
if($c_caf_file5 != ''){
$s_con_message .= '<div>เอกสารประกอบ 5. <a href="'.$_server_.'/contacts/adminattachfiles/'.$c_caf_file5.'" class="textgray" title="" target="_blank">'.$c_caf_file5.'</a></div>';
}
}
$result = smtpmail( $c_con_email , $s_con_title , $s_con_message, $c_con_admin_email, $c_con_admin_email_password, $c_con_admin_email_server, $s_con_name );
}
}
?> </td>
</tr>
<tr>
<td valign="top"> </td>
</tr>
</table> </td>
</tr>
</table> </th>
</tr>
</table></th>
</tr>
</table></td>
</tr>
<tr>
<td align="center" valign="top"><table width="980" align="center" cellpadding="0" cellspacing="0">
<tr>
<td width="170" align="center" valign="top"> </td>
<td width="789" align="center" valign="top"> </td>
<td width="19" align="center" valign="top"> </td>
</tr>
</table></td>
</tr>
</table>
</th>
</tr>
</table>
</div>
<!-- end_content -->
</body>
</html>
<?include("../include/close_db.php");?>