110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/manage/directorBCNU/ drwxr-xr-x Free 52.81 GB of 127.8 GB (41.32%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

<?php



    session_start();

    

    /**  Define Validate Access  */

    define( '_VALID_ACCESS', 1 );



    /**  Check Session User Login  */

    if( !session_is_registered("valid_user") && !session_is_registered("Priority") ) {

        echo "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=windows-874\" />";

        echo "<p style=padding-top:115px><p align=center><br /><font color=red><strong>ЎГШіТ·УЎТГ Login ЎиН№</strong></font></p></p>";

        echo "<meta http-equiv=\"refresh\" content=\"1; URL=../login.php\" />";

        exit();

    } 

    else {

        /**  Configuration  */

        require_once( "../configuration.php" );

        require_once( $_Config_absolute_path . "/includes/framework.php" );

        require_once( "../include/Function.php" );

    

        /**  Create Database Object  */

        $dbObj = new DBConn;

        

        /**  Config Table for This Page  */

        $myTable = "personal_tb";

        

        $Username = $valid_user;



        $query = " SELECT *, prefixName as First_name FROM $myTable LEFT JOIN prefix ON personal_tb.First_name = prefix.prefixId WHERE  Teacher_code ='$Teacher_code' ";

        $result = $dbObj->execQuery($query);

        $rs = $dbObj->fetchArray($result);

        

        

        /**  вїЕаґНГмдїЕмаНЎКТГ */

        $doc_path = $_Config_live_site."/personal_pic";

    } # else

 ?>

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">

<head>

<meta http-equiv="Content-Type" content="text/html; charset=windows-874" />

<link href="../css/default.css" rel="stylesheet" type="text/css" />

<title>ўйНБЩЕ»ГРЗСµФКиЗ№µСЗ - ўйНБЩЕ»ГРЗСµФЎТГ·У§Т№</title>

<style type="text/css">

<!--

.style22 {font-size: 14px; font-weight: bold; }

-->

</style>

</head>



<body topmargin="0" rightmargin="0" bottommargin="0" leftmargin="0">

<?php

    include("../templates/incHeader.php");

?>

<table width="1003" border="0" cellspacing="0" cellpadding="0">

  <tr>

    <td width="203" align="left" valign="top" style="padding:10px 0px 0px 5px"><?php include("./_incMainMenu.php");?></td>

    <td width="800" height="440" align="left" valign="top" style="padding:10px 0px 5px 10px"><fieldset><legend><font size="2" color="<?php echo $GLOBALS["COLOR_FONT_3"]; ?>"><a href="index.php">Л№йТЛЕСЎ</a></font><img src="../picture/ico3.gif" width="10" height="10" align="absmiddle" border="0" /></font><font size="2" color="<?php echo $GLOBALS["COLOR_FONT_3"]; ?>"><a href="Menu_History.php?Teacher_code=<?=$rs[Teacher_code];?>">ўйНБЩЕКиЗ№µСЗ</a></font><img src="../picture/ico3.gif" width="10" height="10" align="absmiddle" border="0" /></font><font size="2" color="<?php echo $GLOBALS["COLOR_FONT_3"]; ?>"><a href="Edit_Work_History.php?Teacher_code=<?=$rs[Teacher_code];?>">бЎйдў»ГРЗСµФЎТГ·У§Т№</a></font><img src="../picture/ico3.gif" width="10" height="10" align="absmiddle" border="0" /></font><span class="NOTE"><strong>ўйНБЩЕ»ГРЗСµФЎТГ·У§Т№</strong></font></span></legend>

      <table width="754" border="0" cellspacing="0" cellpadding="0">

      <tr>

        <td width="754" height="5"></td>

      </tr>

      

      <tr>

        <td>&nbsp;</td>

      </tr>

      <tr>

        <td align="center">

            <table width="750" border="0" cellpadding="1" cellspacing="4">

              <tr>

                <td colspan="3"><hr /></td>

                 </tr>

              <tr>

                <td>&nbsp;</td>

                <td colspan="2" align="center"><strong>»ГРЗСµФЎТГ·У§Т№</strong></td>

                 </tr>

              <tr>

                <td>&nbsp;</td>

                <td>ЄЧиН-№ТБКЎШЕ : <?php echo $rs["First_name"]." ".$rs["Teacher_name"]." ".$rs["Teacher_lastname"] ;?></td>

                <td>ЄЧиНаўйТгЄйГРєє§Т№ : <?php echo $rs["Teacher_id"] ;?></td>

              </tr>

              <tr>

                <td width="10">&nbsp;</td>

                <td width="383">µУбЛ№и§·Т§ГТЄЎТГ :

                  <?php

         $PositionId  =  $rs['PositionId'] ;

         $sql = "Select * From  position_tb    Where  PositionId='$PositionId' ";

          $result2 = mysql_query($sql) or die("Error".mysql_error());

          $rss3 = mysql_fetch_array($result2);

          echo "$rss3[Position_name] ";

         ?></td>

                <td width="343">ГЛСК§Т№ѕСІ№ТєШ¤¤ЕТЎГ : <?php echo $rs["Club_no"] ;?></td>

                </tr>

              <tr>

                <td>&nbsp;</td>

                <td>µУбЛ№и§ЎТГєГФЛТГ : <?php echo "$rs[Manage_pos]";  ?></td>

                <td>»ГРаА·єШ¤ЕТЎГ : <?php 

                            

                              $Ptype_code = $rs["Person_type"];

                            $sql1 = "Select * From person_type_tb Where Ptype_code='$Ptype_code'";

                            $result1 = mysql_query($sql1) or die(" Error ".mysql_error());

                            $rs1 = mysql_fetch_array($result1);

                            echo "$rs1[Ptype_name]";

                          ?></td>

                </tr>

              <tr>

                <td>&nbsp;</td>

                <td>ЗС№·ХиаГФиБГСєГТЄЎТГ : <?php echo ymdT2dmyText($rs[Year_gov]); ?></td>

                <td>»ГРаА·КТВ§Т№ :   <?php 

                        $Ttype_code = $rs["Teacher_type"];

                        $sql2 = "Select * From teacher_type_tb Where Ttype_code='$Ttype_code'";

                        $result2 = mysql_query($sql2) or die(" Error ".mysql_error());

                        $rs2 = mysql_fetch_array($result2);

                        echo "$rs2[Ttype_name]";

                      ?></td>

                </tr>

              <tr>

                <td>&nbsp;</td>

                <td>ЗС№·ХиаГФиБ·У§Т№г№ЗФ·ВТЕСВ : <?php echo ymdT2dmyText($rs[Year_coll]); ?></td>

                <td>аЕў·Хигє»ГРЎНєЗФЄТЄХѕ :  <?php echo $rs["Gover_id"] ;?></td>

                </tr>

              <tr>

                <td>&nbsp;</td>

                <td>ЗС№·ХиаГФиБ·УЎТГКН№г№ЗФ·ВТЕСВ : <?php echo ymdT2dmyText($rs[Year_fac]);    ?></td>

                <td>ЗС№ЛБґНТВШгє»ГРЎНєЗФЄТЄХѕ : <?php echo ymdT2dmyText($rs["Date_gover"]) ;?></td>

                </tr>

              <tr>

                <td>&nbsp;</td>

                <td>КС§ЎСґЛ№иЗВ§Т№ : <?php 

                            $Faculty_code = $rs["Faculty_code"];

                            $Strsql = "Select * From faculty_tb Where Faculty_code ='$Faculty_code' ";

                            $res = mysql_query($Strsql) or die("Error $sql".mysql_error());

                            $rss = mysql_fetch_array($res);

                            echo "$rss[Faculty_name]";

                        ?>&nbsp;&nbsp; &nbsp;&nbsp; &nbsp;&nbsp;</td>

                <td>аЕў·ХиКБТЄФЎКАТЎТГѕВТєТЕ : <?php echo $rs["Club_nid"] ;?></td>

                </tr>

              <tr>

                <td>&nbsp;</td>

                <td> ЎЕШиБ/§Т№

                  : <?php

        $conId  =  $rs['conId'] ;

         $sql = "Select * From   facultycon_tb    Where  conId='$conId'";

          $result2 = mysql_query($sql) or die("Error".mysql_error());

          $rss3 = mysql_fetch_array($result2);

          echo "$rss3[Group_name] ";

         ?></td>

                <td>&nbsp;</td>

                </tr>

              <tr>

                <td>&nbsp;</td>

                <td>а§Ф№аґЧН№ : <?php echo number_format($rs["Salary_1"]);?> єТ·</td>

                <td>&nbsp;</td>

              </tr>

              <tr>

                <td>&nbsp;</td>

                <td>а§Ф№¤иТµНєб·№ЗФЄТЄХѕ : <?php echo number_format($rs["Salary_2"]); ?> єТ·</td>

                <td>&nbsp;</td>

              </tr>

              <tr>

                <td>&nbsp;</td>

                <td>а§Ф№»ГРЁУµУбЛ№и§ : <?php echo number_format($rs["Salary_3"]);?> єТ·</td>

                <td>&nbsp;</td>

                </tr>

              <tr>

                <td>&nbsp;</td>

                <td>¤ЗТБКТБТГ¶ѕФаИЙ</td>

                <td>&nbsp;</td>

              </tr>

              <tr>

                <td>&nbsp;</td>

                <td colspan="2"><?php   echo htmlspecialchars_decode( nl2br( $rs['Skill'] ) ); ?></td>

                 </tr>

              </table>

            <hr />             </td>

      </tr>

      <tr>

        <td>&nbsp;</td>

      </tr>

    </table>

   </fieldset></td>

  </tr>

</table>

<?php include("../templates/incFooter.php"); ?>

</body>

</html>

<?php

    /**  Free Resource */

    $dbObj->freeresult($result);

    

    /**  Close the Database  */

    $dbObj->disconn();

    

    /**  Unset Class  */

    unset($dbObj);

?>
:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:
:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/
:: Command execute ::
Enter:	Select: