110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/manage/Research_depart/ drwxr-xr-x Free 52.65 GB of 127.8 GB (41.2%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686

uid=48(apache) gid=48(apache) groups=48(apache)

Safe-mode: OFF (not secure)

/var/www/html/manage/Research_depart/ drwxr-xr-x
Free 52.65 GB of 127.8 GB (41.2%)
Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

Viewing file: AddResearchDetail.php (26.48 KB) -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |

";
		echo "

ЎГШіТ·УЎТГ Login ЎиН№
";
		echo "";
		exit();
	} 
	else {
		/**  Configuration  */
		require_once( "../configuration.php" );
		require_once( $_Config_absolute_path . "/includes/framework.php" );
		require_once( "../includes/Function.php" );
	    require_once( "../includes/cURLRes.php" );
		/**  Create Database Object  */
		$dbObj = new DBConn;

		//=== SESSION
		$Username = $valid_user; 
		
		
		/**  Config Table for This Page  */
		$myTable1 = "personal_tb";
		$myTable2 = "research_tb";
		$myTable3 =" researchtype_tb"; 
		$myTable4 ="researchpublic_tb"; 
		$myTable5 = "research_char_tb";
		$myTable6 ="research_file_tb"; 
		$myTable7="research_public_tb"; 
		$myTable8 ="research_success_tb"; 
		$myTable9 ="researchtracking_tb"; 
		
		$myTable2PK = "Research_code";
		
		/**  Table  -->  personal_tb  */
		
		  $sql = " SELECT * FROM  $myTable2   WHERE   Research_code ='$Research_code' ";
		  $result1 = mysql_query($sql) or die("Error".mysql_error());
		  $rss1= mysql_fetch_array($result1);
         	
		$sql = " SELECT * FROM   $myTable6   WHERE  Research_code ='$Research_code' ";
		 $result2 = mysql_query($sql) or die("Error".mysql_error());
		  $rss2= mysql_fetch_array($result2);
		
		$sql = " SELECT * FROM   $myTable7  WHERE  Research_code ='$Research_code' ";
		$result3 = mysql_query($sql) or die("Error".mysql_error());
	     $rss3= mysql_fetch_array($result3);
			
		/**  вїЕаґНГмдїЕмаНЎКТГ */
		$doc_path = $_Config_live_site."/Research_pic";			
	
	
							/**  Botton Name Action */
		$action = $_REQUEST['action'];
		$id = $_REQUEST['id'];
	
		if( isset($action) && !empty($action) ) {
			switch($action) {
				case "Delete" :
					$num = count($id);
					for( $i=0; $i<$num; $i++ ){

						$qrySel = " SELECT *  FROM    research_dissemination    Where    pubId ='$id[$i]' ";
						$resultSel = $dbObj->execQuery($qrySel);
						$rsSel = $dbObj->fetchObject($resultSel);
							
						$qryDel = " DELETE  FROM   research_dissemination    Where    pubId='$id[$i]'   ";
						$resultDel = $dbObj->runQuery($qryDel);
						$dbObj->freeresult($resultDel);
						
					}
				break;
			} # switch
		} # if
							
							
	  	
		
	} # else
 ?>






ўйНБЩЕ§Т№ЗФЁСВ 






  
    
    
     
      
      
        
      
      
        Л№йТЛЕСЎ » ўйНБЩЕјЕ§Т№  » єС№·ЦЎјЩй·УјЕ§Т№ » бЎйдўјЕ§Т№ » ўйНБЩЕЎТГаајВбѕГијЕ§Т№
        
      
         
      
      
         ‹ ВйН№ЎЕСє
      
      
         
      
      
        
          
            Л№иЗВ§Т№ : 
              
              
          
          
            »ГРаА·јЕ§Т№:
              
              
            
          
            ЄЧиНв¤Г§ЎТГјЕ§Т№:
            
          
            јЩй·УјЕ§Т№
             
            execQuery($query);
		       $numrows = $dbObj->_numrows;  
		          ?>
              fetchArray($result1) ) { 
					$bgColor = ( $bgColor == "#FFFFFF" ) ? "#F9FBFB" : "#FFFFFF";
          	?>
              
              
                
                
                  
                
                
              
              
            
          
             
             
            
               value="1"   />
              а»з№јЕ§Т№·ХиНВЩиг№бј№Ки§аКГФБЎТГ№УаК№НјЕ§Т№ЗФЄТЎТГўН§ЗФ·ВТЕСВ 
              
              
            
          
             
             
             value="2"  />
              дґйГСєЎТГК№СєК№Ш№§є»ГРБТіЁТЎЗФ·ВТЕСВбЕР/ЛГЧНЛ№иЗВ§Т№НЧи№ж  г№ЎТГд»№УаК№НјЕ§Т№ЗФЄТЎТГ
            
          
            ЎЕШиБКТўТЗФЄТЎТГ
            :
            
              
            
          
             
          
          
            execQuery($query);
		       $numrows = $dbObj->_numrows;  
		          ?>
              fetchArray($result1) ) { 
					$bgColor = ( $bgColor == "#FFFFFF" ) ? "#F9FBFB" : "#FFFFFF";
          	?>
              execQuery($query);
		       $numrows = $dbObj->_numrows;  
		          ?>
              fetchArray($result2) ) { 
					$bgColor = ( $bgColor == "#FFFFFF" ) ? "#F9FBFB" : "#FFFFFF";
          	?>
              execQuery($query);
		       $numrows = $dbObj->_numrows;  
		          ?>
              fetchArray($result4) ) { 
					$bgColor = ( $bgColor == "#FFFFFF" ) ? "#F9FBFB" : "#FFFFFF";
          	?>
              
              
                
                  
                  
                
              
                   ЎТГајВбѕГи§Т№ЗФЁСВЎТГ»ГРЄШБ
                
              
                
                                               ЄЧиНЎТГ»ГРЄШБ : Л№иЗВ§Т№·ХиЁСґ: ґТЗмвЛЕґаНЎКТГ: 
                  
                  
                  
                  
                
                
                
                  
                  
                 0){
				if(isset($rss['pubId']) && checkrsResearchCurl($rss['pubId'])) echo "";
				else echo "";
			}
			else echo "";
		?>
                
                
              
                  ЎТГајВбѕГиє·¤ЗТБЗФЁСВ
                 
                 
                 
                 
                
              
                
                                               
                  °Т№ўйНБЩЕ:  ЄЧиНЗТГКТГ:
                  ґТЗмвЛЕґаНЎКТГ:
                  
                  
                  
                  
                  
                
                
                
                  
                  
                 0){
				if(isset($Research_code) && checkrsResearchCurl($Research_code)) echo "";
				else echo "";
			}
			else echo "";
		?>
                                          
              
                  ЎТГајВбѕГиє·¤ЗТБЗФЄТЎТГ
                 
                 
                 
                 
                
              
                
                                               
                  °Т№ўйНБЩЕ:
                  
                    ЄЧиНЗТГКТГ:
                  
                  ґТЗмвЛЕґаНЎКТГ:
                  
                  
                  
                  
                  
                
                
                
                  
                  
                 0){
				if(isset($Research_code) && checkrsResearchCurl($Research_code)) echo "";
				else echo "";
			}
			else echo "";
		?>
                  
                
              
              
            
          
            
            
          
                
              
                 value="Y" />
                
              єЩГіТЎТГЎСєв¤Г§ЎТГєГФЎТГЗФЄТЎТГ
            
          
                  value="Y" />
              ¤ЗТБГиЗББЧН§Т№ЗФЁСВЎСєєШ¤¤ЕАТВ№НЎ 
            
          
             
            
          
            »Х»ЇФ·Ф№ 
            :
            
            
          
            »ХЎТГИЦЎЙТ
            :
            
            
          
            »Х§є»ГРБТі
            :
            
            
          
            ЗС№·ХиаГФиБ
            :
            
            
          
            ЗС№·ХибЕйЗаКГзЁ
            :
            
              
            
          
            бЛЕи§а§Ф№·Ш№
             
            
              
                  value="АТВг№"  onclick="checkAssign1(this,form1.FundIn)" /> АТВг№
                ЁУ№З№а§Ф№
                  
                  єТ·
                
              
                 value="АТВ№НЎ"  onclick="checkAssign1(this,form1.FundOut ,form1.Resource_des )" />АТВ№НЎ
                ЁУ№З№а§Ф№
                  
                  єТ· ГРєШ
                  
                
              
                 ГЗБЁУ№З№а§Ф№·Ш№
                
                  єТ·
                
              
            
          
             
             
             
            
          
      
      
        ЛБТВаЛµШ : 

      БХЎТГєС№·ЦЎўйНБЩЕ ·ХиЛ№иЗВ§Т№бЕРКиЗ№ЎЕТ§



      БХЎТГєС№·ЦЎўйНБЩЕ ·ХиЛ№иЗВ§Т№бµидБидґйєС№·ЦЎ·ХиКиТ№ЎЕТ§



      дБиБХЎТГєС№·ЦЎўйНБЩЕ ·ХиЛ№иЗВ§Т№бЕРКиЗ№ЎЕТ§
      
    
   
  




freeresult($result0);
	
	/**  Close the Database  */
	$dbObj->disconn();
	
	/**  Unset Class  */
	unset($dbObj);
?>
bool(false)

:: Command execute ::
Enter:	Select:

:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:

:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/

:: Search ::

:: Upload ::

:: Make Dir ::

:: Make File ::

:: Go Dir ::

:: Go File ::

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0062 ]--