!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6 

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686
 

uid=48(apache) gid=48(apache) groups=48(apache) 

Safe-mode: OFF (not secure)

/var/www/html/alumni/inc/geshi/geshi/   drwxr-xr-x
Free 50.91 GB of 127.8 GB (39.84%)
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     vb.php (6.06 KB)      -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
<?php
/*************************************************************************************
 * vb.php
 * ------
 * Author: Roberto Rossi (rsoftware@altervista.org)
 * Copyright: (c) 2004 Roberto Rossi (http://rsoftware.altervista.org), Nigel McNie (http://qbnz.com/highlighter)
 * Release Version: 1.0.7.19
 * Date Started: 2004/08/30
 *
 * Visual Basic language file for GeSHi.
 *
 * CHANGES
 * -------
 * 2004/11/27 (1.0.1)
 *  -  Added support for multiple object splitters
 * 2004/08/30 (1.0.0)
 *  -  First Release
 *
 * TODO (updated 2004/11/27)
 * -------------------------
 *
 *************************************************************************************
 *
 *     This file is part of GeSHi.
 *
 *   GeSHi is free software; you can redistribute it and/or modify
 *   it under the terms of the GNU General Public License as published by
 *   the Free Software Foundation; either version 2 of the License, or
 *   (at your option) any later version.
 *
 *   GeSHi is distributed in the hope that it will be useful,
 *   but WITHOUT ANY WARRANTY; without even the implied warranty of
 *   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 *   GNU General Public License for more details.
 *
 *   You should have received a copy of the GNU General Public License
 *   along with GeSHi; if not, write to the Free Software
 *   Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
 *
 ************************************************************************************/
 
$language_data = array (
    
'LANG_NAME' => 'Visual Basic',
    
'COMMENT_SINGLE' => array(=> "'"),
    
'COMMENT_MULTI' => array(),
    
'CASE_KEYWORDS' => GESHI_CAPS_NO_CHANGE,
    
'QUOTEMARKS' => array('"'),
    
'ESCAPE_CHAR' => '',
    
'KEYWORDS' => array(
        
=> array(
            
'as''err''boolean''and''or''recordset''unload''to',
            
'integer','long','single','new','database','nothing','set','close',
            
'open','print','split','line','field','querydef','instrrev',
            
'abs','array','asc','ascb','ascw','atn','avg','me',
            
'cbool','cbyte','ccur','cdate','cdbl','cdec','choose','chr','chrb','chrw','cint','clng',
            
'command','cos','count','createobject','csng','cstr','curdir','cvar','cvdate','cverr',
            
'date','dateadd','datediff','datepart','dateserial','datevalue','day','ddb','dir','doevents',
            
'environ','eof','error','exp',
            
'fileattr','filedatetime','filelen','fix','format','freefile','fv',
            
'getallstrings','getattr','getautoserversettings','getobject','getsetting',
            
'hex','hour','iif','imestatus','input','inputb','inputbox','instr','instb','int','ipmt',
            
'isarray','isdate','isempty','iserror','ismissing','isnull','isnumeric','isobject',
            
'lbound','lcase','left','leftb','len','lenb','loadpicture','loc','lof','log','ltrim',
            
'max','mid','midb','min','minute','mirr','month','msgbox',
            
'now','nper','npv','oct','partition','pmt','ppmt','pv','qbcolor',
            
'rate','rgb','right','rightb','rnd','rtrim',
            
'second','seek','sgn','shell','sin','sln','space','spc','sqr','stdev','stdevp','str',
            
'strcomp','strconv','string','switch','sum','syd',
            
'tab','tan','time','timer','timeserial','timevalue','trim','typename',
            
'ubound','ucase','val','var','varp','vartype','weekday','year',
            
'appactivate','base','beep','call','case','chdir','chdrive','const',
            
'declare','defbool','defbyte','defcur','defdate','defdbl','defdec','defint',
            
'deflng','defobj','defsng','defstr','deftype','defvar','deletesetting','dim','do',
            
'else','elseif','end','enum','erase','event','exit','explicit',
            
'false','filecopy','for','foreach','friend','function','get','gosub','goto',
            
'if','implements','kill','let','lineinput','lock','loop','lset','mkdir','name','next','not',
            
'onerror','on','option','private','property','public','put','raiseevent','randomize',
            
'redim','rem','reset','resume','return','rmdir','rset',
            
'savepicture','savesetting','sendkeys','setattr','static','sub',
            
'then','true','type','unlock','wend','while','width','with','write',
            
'vbabort','vbabortretryignore','vbapplicationmodal','vbarray',
            
'vbbinarycompare','vbblack','vbblue','vbboolean','vbbyte','vbcancel',
            
'vbcr','vbcritical','vbcrlf','vbcurrency','vbcyan','vbdataobject',
            
'vbdate','vbdecimal','vbdefaultbutton1','vbdefaultbutton2',
            
'vbdefaultbutton3','vbdefaultbutton4','vbdouble','vbempty',
            
'vberror','vbexclamation','vbfirstfourdays','vbfirstfullweek',
            
'vbfirstjan1','vbformfeed','vbfriday','vbgeneraldate','vbgreen',
            
'vbignore','vbinformation','vbinteger','vblf','vblong','vblongdate',
            
'vblongtime','vbmagenta','vbmonday','vbnewline','vbno','vbnull',
            
'vbnullchar','vbnullstring','vbobject','vbobjecterror','vbok','vbokcancel',
            
'vbokonly','vbquestion','vbred','vbretry','vbretrycancel','vbsaturday',
            
'vbshortdate','vbshorttime','vbsingle','vbstring','vbsunday',
            
'vbsystemmodal','vbtab','vbtextcompare','vbthursday','vbtuesday',
            
'vbusesystem','vbusesystemdayofweek','vbvariant','vbverticaltab',
            
'vbwednesday','vbwhite','vbyellow','vbyes','vbyesno','vbyesnocancel',
            
'vbnormal','vbdirectory'
            
)
        ),
    
'SYMBOLS' => array(
        
'('')'
        
),
    
'CASE_SENSITIVE' => array(
        
GESHI_COMMENTS => false,
        
=> false
        
),
    
'STYLES' => array(
        
'KEYWORDS' => array(
            
=> 'color: #b1b100;'
            
),
        
'COMMENTS' => array(
            
=> 'color: #808080;'
            
),
        
'BRACKETS' => array(
            
=> 'color: #66cc66;'
            
),
        
'STRINGS' => array(
            
=> 'color: #ff0000;'
            
),
        
'NUMBERS' => array(
            
=> 'color: #cc66cc;'
            
),
        
'METHODS' => array(
            
=> 'color: #66cc66;'
            
),
        
'SYMBOLS' => array(
            
=> 'color: #66cc66;'
            
),
        
'ESCAPE_CHAR' => array(
            
=> 'color: #000099;'
            
),
        
'SCRIPT' => array(
            ),
        
'REGEXPS' => array(
            )
        ),
    
'OOLANG' => true,
    
'OBJECT_SPLITTERS' => array(
        
=> '.'
        
),
    
'REGEXPS' => array(
        ),
    
'STRICT_MODE_APPLIES' => GESHI_NEVER,
    
'SCRIPT_DELIMITERS' => array(
        ),
    
'HIGHLIGHT_STRICT_BLOCK' => array(
        )
);

?>

:: Command execute ::

Enter:
 
Select:
 

:: Shadow's tricks :D ::

Useful Commands
 
Warning. Kernel may be alerted using higher levels
Kernel Info:

:: Preddy's tricks :D ::

Php Safe-Mode Bypass (Read Files)

File:

eg: /etc/passwd

Php Safe-Mode Bypass (List Directories):

Dir:

eg: /etc/

:: Search ::
  - regexp 

:: Upload ::
 
[ ok ]

:: Make Dir ::
 
[ ok ]
:: Make File ::
 
[ ok ]

:: Go Dir ::
 
:: Go File ::
 

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0146 ]--