Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/alumni/ drwxrwxrwx | |
| Viewing file: Select action/file-type: <?php
/********************************************************************************
- MemHT Portal -
Copyright (C) 2007-2008 by Miltenovik Manojlo
http://www.memht.com
This program is free software; you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation; either version 2 of the License, or
(at your opinion) any later version.
This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.
You should have received a copy of the GNU General Public License along
with this program; if not, see <http://www.gnu.org/licenses/> (GPLv2)
or write to the Free Software Foundation, Inc., 51 Franklin Street,
Fifth Floor, Boston, MA02110-1301, USA.
********************************************************************************/
//===========================================
//Script time execution
//===========================================
$mtime = microtime();
$mtime = explode(" ",$mtime);
$starttime = $mtime[1] + $mtime[0];
//===========================================
//Script compression
//===========================================
if (@extension_loaded('zlib')) {
@ini_set('zlib.output_compression_level', 6);
@ob_start('ob_gzhandler');
}
//===========================================
//Check if the site is installed
//===========================================
if (!file_exists("inc/inc_config.php")) {
if (file_exists("install/install.php")) {
header("Location: install/install.php");
} else {
die("<table style='padding: 2px; border: 1px solid #999; background-color: #EEE; font-family: Verdana; font-size: 10px;' align='center'><tr><td><b>Attention:</b> The configuration file is missing and a new installation cannot be started because the install file cannot be located</td></tr></table>");
}
} else if (file_exists("install/install.php")) {
die("<table style='padding: 2px; border: 1px solid #999; background-color: #EEE; font-family: Verdana; font-size: 10px;' align='center'><tr><td><b>Attention:</b> Delete the installation folder and files!</td></tr></table>");
}
//===========================================
//Database: Connect
//===========================================
require_once("inc/inc_config.php");
require_once("inc/inc_database.php");
$dblink = new database();
$dblink->connect();
//Database empty?
if ($dblink->get_num_noerr("SELECT nome FROM memht_config")==0) {
die("<table style='padding: 2px; border: 1px solid #999; background-color: #EEE; font-family: Verdana; font-size: 10px;' align='center'><tr><td><b>Attention:</b> Cannot find database tables!</td></tr></table>");
}
//===========================================
//Timezone setting
//===========================================
$timezonerow = $dblink->get_row("SELECT timezone FROM memht_config");
$siteConfig['timezone'] = intval($timezonerow['timezone']);
$tzNOW = "DATE_ADD(NOW(),INTERVAL ".$siteConfig['timezone']." HOUR)";
//===========================================
//Includes
//===========================================
require_once("inc/inc_login.php");
require_once("inc/inc_functions.php");
require_once("inc/inc_bbcode.php");
require_once("inc/inc_readConfig.php");
require_once("inc/inc_getinfo.php");
require_once("inc/inc_ban.php");
//-------------------------------------------
require_once("inc/inc_banners.php");
require_once("admin/inc/inc_tpl.php");
//===========================================
//Language selection
//===========================================
if (file_exists("lang/".$siteConfig['language'].".php")) {
include_once("lang/".$siteConfig['language'].".php");
} else {
include_once("lang/".$siteConfig['default_language'].".php");
}
global $userid,$userInfo;
if (isAuth($userid,2)) {
error_reporting(E_ALL);
$admin = $userInfo['user'];
$email = $userInfo['email'];
if (isset($_GET['page'])) {
$page = inCode($_GET['page']);
if (checkCode($page)) {
//Main Begin
if (file_exists("admin/pages/$page/index.php")) {
if (file_exists("admin/pages/$page/lang/".$siteConfig['language'].".php")) {
include_once("admin/pages/$page/lang/".$siteConfig['language'].".php");
} else if (file_exists("admin/pages/$page/lang/".$siteConfig['default_language'].".php")) {
include_once("admin/pages/$page/lang/".$siteConfig['default_language'].".php");
}
if ($userInfo['rank']>2 OR $dblink->get_num("SELECT page FROM memht_privs WHERE userid=$userid AND page='$page'")>0) {
define("_LOAD_PAGE_",1);
include("admin/pages/$page/index.php");
} else {
//Access denied......
require_once("admin/inc/inc_header.php");
admin_page_title("");
openTable();
echo "<div align='center' id='errorText'><b>"._ACCESSDENIED_."</b></div>";
closeTable();
require_once("admin/inc/inc_footer.php");
}
echo "</div>";
} else {
require_once("admin/inc/inc_header.php");
admin_page_title("");
openTable();
echo "<div align='center' id='errorText'><b>"._PAGE_NOEXIST_."</b></div>";
closeTable();
require_once("admin/inc/inc_footer.php");
}
//Main End
} else {
require_once("admin/inc/inc_header.php");
admin_page_title("");
openTable();
echo "<div align='center' id='errorText'><b>"._SYNTAX_ERROR_."</b></div>";
closeTable();
require_once("admin/inc/inc_footer.php");
}
} else {
require_once("admin/inc/inc_header.php");
define("_LOAD_PAGE_",1);
include_once("admin/inc/inc_newevents.php");
include_once("admin/inc/inc_info.php");
require_once("admin/inc/inc_footer.php");
}
} else {
error_reporting(0);
echo "<!DOCTYPE html PUBLIC '-//W3C//DTD XHTML 1.0 Transitional//EN' 'http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd'>\n";
echo "<html xmlns='http://www.w3.org/1999/xhtml'>\n";
echo "<head>\n";
echo "<meta http-equiv='Content-Type' content='text/html; charset=utf-8' />\n";
echo "<title>".$siteConfig['site_name']." - Admin</title>\n";
//Tooltips
?>
<style type='text/css'>
body {
padding: 0;
margin: 0;
}
body td { font-size:12px; color:#777; }
.foot {
padding-top: 4px;
text-align:center;
font-size:10px;
color:#999;
}
.foot a,
.foot a:visited { color: #999; }
.foot a:hover { color:#900; }
.adminbox {
margin:0 auto;
width:350px;
padding:4px;
background-color:#FFF;
border:1px solid #DDD;
}
.adminbox_title {
margin:0 auto;
width:350px;
padding:4px;
font-size:14px;
font-weight:bold;
color:#AAA;
background:url(images/admin/title.gif) repeat-x #FFF;
text-align:center;
border-left:1px solid #DDD;
border-top:1px solid #DDD;
border-right:1px solid #DDD;
}
.adminbox_error {
margin:0 auto;
width:350px;
padding:10px 4px;
background-color:#FFF;
text-align:center;
border:1px solid #DDD;
}
.intxt {
border:1px solid #99CF0E;
color:#777;
font-size:16px;
}
.intxt:hover { border:1px solid #FFD110; }
.button {
background:url(images/admin/login.gif) no-repeat;
width:58px;
height:23px;
border:0;
}
.button:hover {
background:url(images/admin/login.gif) 0 -23px no-repeat;
width:58px;
height:23px;
border:0;
}
</style>
<?php
echo "<style type='text/css'>\n";
echo "body { font-size: 12px; }\n";
echo "</style>\n";
echo "</head>\n";
echo "<body>\n";
//
?>
<link rel="stylesheet" href="admin/inc/inc_tpl.css" type='text/css'>
<div class="tpl_admin_head_1"><img src="admin/images/tpl/tpl_head_logo.png" border="0" alt="MemHT Portal"></div>
<div class="tpl_admin_head_2" style="margin-bottom:20px;"></div>
<?php
//
if ($dblink->get_num("SELECT * FROM memht_login_flood WHERE ip='".$visitorInfo['ip']."' AND attempts>=5")==0) {
echo "<form name='admin01' method='post' action='admin.php'>\n";
echo "<div class='adminbox_title'>"._ADMINISTRATION_."</div>\n";
echo "<div class='adminbox'>\n";
echo "<table cellpadding='6' cellspacing='0' border='0' align='center'>\n";
echo "<tr>";
echo "<td rowspan='3' valign='top'><img src='images/admin/access.gif' alt='Access' style='margin-right:15px;'></td>";
echo "<td>"._USERNAME_."<br><input type='text' name='post_username' class='intxt'></td>";
echo "</tr>";
echo "<tr>";
echo "<td>"._PASSWORD_."<br><input type='password' name='post_password' class='intxt'></td>";
echo "</tr>";
echo "<tr>";
echo "<td><input type='submit' name='Submit' value='' class='button'></td>";
echo "</tr>";
echo "</table>\n";
echo "</div>";
echo "<div style='text-align:center;'><a href='".$siteConfig['site_url']."' style='color:#AAA;'>"._BACKTOTHESITE_."</a></div>";
echo "<input type='hidden' name='login' value='true'>";
echo "</form>\n";
@session_start();
$_SESSION['redirect_url'] = "admin.php";
$_SESSION['redirect_age'] = time();
} else {
echo "<div class='adminbox_title'>"._ADMINISTRATION_."</div>\n";
echo "<div class='adminbox_error'><img src='images/admin/wait.gif' alt='Wait' style='margin-bottom:10px;'><br>"._YOUMUSTWAITTOLOGINAGAIN_."</div>\n";
}
echo "</body>\n";
echo "</html>\n";
}
if ($siteConfig['usecronjobs']==0) {
//===========================================
//Maintenance
//===========================================
$maintenance = new Maintenance();
$maintenance->All();
//===========================================
//Newsletter
//===========================================
sendNewsletter();
}
//===========================================
//Database: Disconnect
//===========================================
$dblink->disconnect();
?>
|
:: Command execute :: | |
:: Shadow's tricks :D :: | |
Useful Commands
|
|
:: Preddy's tricks :D :: | |
Php Safe-Mode Bypass (Read Files)
|
|
--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0061 ]-- |