110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/manage/ drwxr-xr-x Free 52.82 GB of 127.8 GB (41.33%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686

uid=48(apache) gid=48(apache) groups=48(apache)

Safe-mode: OFF (not secure)

/var/www/html/manage/ drwxr-xr-x
Free 52.82 GB of 127.8 GB (41.33%)
Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

Viewing file: AddStudentCom.php (12.72 KB) -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |

";
		echo "

ЎГШіТ·УЎТГ Login ЎиН№
";
		echo "";
		exit();
	} 
	else {
	
	/**  Configuration  */
	include( "configuration.php" );
	require_once( $_Config_absolute_path . "/includes/framework.php" );
	include_once( "./link/function.php" );

	/**  using 'reg' DB  */
	include("./includes/FunctionDB2.php");
	include("./includes/Function.php");
	
	/**  Create Database Object  */
	$dbObj = new DBConn;
	
	ConnectDB();
		
	/**  Config Table for This Page  */
	$myTable = "StudentMaster";
	$myTableFK = "studentId";

	
	$query = " SELECT *  FROM $myTable WHERE studentCode='$studentCode' ";
	$result = $dbObj->execQuery($query);
	$rs = $dbObj->fetchArray($result);

	$sql = " SELECT *  FROM StudentBio  WHERE  studentCode='$studentCode' ";     
	$result = mysql_query($sql);
	$rss = mysql_fetch_array($result);

	$picturePath = str_replace( "../", "", $rss['picturePath'] );
	
	mysql_select_db("manage_db");
	
	$sql = " SELECT *  FROM stu_notebook  WHERE  studentCode='$studentCode' ";     
	$result = mysql_query($sql);
	$rs5 = mysql_fetch_array($result);
	
	mysql_select_db("reg");
	
	//} # else

?>




<?=$_Config_sitename;?> - ўйНБЩЕ№СЎИЦЎЙТ - »ГРЗСµФ№СЎИЦЎЙТ









  
    
    
     
      
        
      
      
        Л№йТЛЕСЎ » ўйНБЩЕ№СЎИЦЎЙТ » бєєїНГмЎТГЕ§·РаєХВ№¤НБѕФЗаµНГмв№кµєШ¤№СЎИЦЎЙТ
        
      
         
      
      
        
              
                
                  
                    ГЛСК№СЎИЦЎЙТ
                     
                     
                  
                  
                    ЄЧиН-№ТБКЎШЕ (д·В)
                     
                      
                      
                      
                      
                  
                  
                    ЛЕСЎКЩµГ
                     
                    execQuery($sql);
						$rs2 = $dbObj->fetchArray($result2);
						$dbObj->freeresult($result2);
							if( $rs2['programName'] != "" ) echo $rs2['programName'];
							else echo " ";
					?>  ГШи№ execQuery($sql);
						$rs3 = $dbObj->fetchArray($result3);
						$dbObj->freeresult($result3);
							if( $rs3['genNo'] != "" ) echo $rs3['genNo'];
							else echo " ";
					?>
                  
                  
                    №УаўйТБТгЄй§Т№
                     
                    
					 
					
                  
                              
                  
                    ВХиЛйН
                     
                    
                                            
                  
                  
                    ГШи№
                     
                    
                      "/>
                    
                  
                  
                    ¤иТ MAC Address
                     
                    
                      "/>
                    
                  
                  
                  
                  
             	
                  
                    
                       
                    
                    
                      
                    
                  
                
                  
                    
                  
                
              
            
      
      
         
      
    
    
  




freeresult($result);

	/**  Close the Database  */
	$dbObj->disconn();
	
	/**  Unset Class  */
	unset($dbObj);
?>
bool(false)

:: Command execute ::
Enter:	Select:

:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:

:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/

:: Search ::

:: Upload ::

:: Make Dir ::

:: Make File ::

:: Go Dir ::

:: Go File ::

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0059 ]--