110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/manage/teacher/ drwxr-xr-x Free 52.63 GB of 127.8 GB (41.18%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686

uid=48(apache) gid=48(apache) groups=48(apache)

Safe-mode: OFF (not secure)

/var/www/html/manage/teacher/ drwxr-xr-x
Free 52.63 GB of 127.8 GB (41.18%)
Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

Viewing file: ResearchDetail.php (31.92 KB) -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |

"; echo "

ЎГШіТ·УЎТГ Login ЎиН№

"; echo ""; exit(); } else { /** Configuration */ require_once( "../configuration.php" ); require_once( $_Config_absolute_path . "/includes/framework.php" ); require_once( "../includes/Function.php" ); /** Create Database Object */ $dbObj = new DBConn; //=== SESSION $Username = $valid_user; /** Config Table for This Page */ $myTable1 = "personal_tb"; $myTable2 = "research_tb"; $myTable3 =" researchtype_tb"; $myTable4 ="researchpublic_tb"; $myTable5 = "research_char_tb"; $myTable6 ="research_file_tb"; $myTable7="research_public_tb"; $myTable8 ="research_success_tb"; $myTable9 ="researchtracking_tb"; $myTable2PK = "Research_code"; /** Table --> personal_tb */ $sql = " SELECT * FROM $myTable2 WHERE Research_code ='$Research_code' "; $result1 = mysql_query($sql) or die("Error".mysql_error()); $rss1= mysql_fetch_array($result1); $sql = " SELECT * FROM $myTable6 WHERE Research_code ='$Research_code' "; $result2 = mysql_query($sql) or die("Error".mysql_error()); $rss2= mysql_fetch_array($result2); $sql = " SELECT * FROM $myTable7 WHERE Research_code ='$Research_code' "; $result3 = mysql_query($sql) or die("Error".mysql_error()); $rss3= mysql_fetch_array($result3); $strSQL = "SELECT count_rv FROM research_tb WHERE Research_code = '".$_GET["Research_code"]."' "; $objQuery = mysql_query($strSQL); $result = mysql_fetch_array($objQuery); $count = $result[0] +1; $strSQL = "UPDATE research_tb SET count_rv= '$count' WHERE Research_code = '".$_GET["Research_code"]."' "; $objQuery = mysql_query($strSQL); /** вїЕаґНГмдїЕмаНЎКТГ */ $doc_path = $_Config_live_site."/Research_pic"; } # else ?> ўйНБЩЕ§Т№ЗФЁСВ - јЕ§Т№ЎТГЗФЁСВ

Л№иЗВ§Т№ :

»ГРаА·јЕ§Т№ :

ЄЧиНјЕ§Т№:

value="1" /> а»з№јЕ§Т№·ХиНВЩиг№бј№Ки§аКГФБЎТГ№УаК№НјЕ§Т№ЗФЄТЎТГўН§ЗФ·ВТЕСВ

value="2" /> дґйГСєЎТГК№СєК№Ш№§є»ГРБТіЁТЎЗФ·ВТЕСВбЕР/ЛГЧНЛ№иЗВ§Т№НЧи№ж г№ЎТГд»№УаК№НјЕ§Т№ЗФЄТЎТГ

execQuery($query); $numrows = $dbObj->_numrows; ?> fetchArray($result1) ) { $bgColor = ( $bgColor == "#FFFFFF" ) ? "#F9FBFB" : "#FFFFFF"; ?>

ЄЧиНјЩй·УЗФЁСВ		К¶Т№РЎТГ·УЗФЁСВ	КСґКиЗ№

ЎЕШиБКТўТЗФЄТЎТГ

" class="TEXT-DARK-BLUE10"> ¤ЗТБКУ¤СбЕР·ХиБТўН§»СЛТ :

ЗСµ¶Ш»ГРК§¤мўН§в¤Г§ЎТГ

ўНєаўµўН§в¤Г§ЎТГјЕ§Т№

јЕ·Хи¤ТґЗиТЁРдґйГСє

№Уд»гЄйг№ЎТГѕСІ№Т¤ШіАТѕЎТГИЦЎЙТ

є·¤СґВиН

ґТЗмвЛЕґдїЕмє·¤СґВиН :

execQuery($query); $numrows = $dbObj->_numrows; ?> fetchArray($result1) ) { $bgColor = ( $bgColor == "#FFFFFF" ) ? "#F9FBFB" : "#FFFFFF"; ?> execQuery($query); $numrows = $dbObj->_numrows; ?> fetchArray($result2) ) { $bgColor = ( $bgColor == "#FFFFFF" ) ? "#F9FBFB" : "#FFFFFF"; ?> execQuery($query); $numrows = $dbObj->_numrows; ?> fetchArray($result4) ) { $bgColor = ( $bgColor == "#FFFFFF" ) ? "#F9FBFB" : "#FFFFFF"; ?>

јЕ§Т№ЗФЁСВ№УаК№Нг№·Хи»ГРЄШБЗФЄТЎТГГРґСєЄТµФбЕР№Т№ТЄТµФ		»Х ѕ.И	¤Рб№№	ЗС№·ХиајВбѕГи	вЛЕґ
				-
ЄЧиНЎТГ»ГРЄШБ : Л№иЗВ§Т№·ХиЁСґ :

јЕ§Т№ЗФЁСВ·ХиµХѕФБѕмајВбѕГиг№ЗТГКТГГРґСєЄТµФбЕР№Т№ТЄТµФ		»Х ѕ.И	¤Рб№№	ЗС№·ХиајВбѕГи	вЛЕґ
				-
ЄЧиН°Т№ўйНБЩЕ: ЄЧиНЗТГКТГ:

ЎТГајВбѕГиє·¤ЗТБЗФЄТЎТГ		»Х ѕ.И	¤Рб№№	ЗС№·ХиајВбѕГи	вЛЕґ
				-
	ЄЧиН°Т№ўйНБЩЕ: ЄЧиНЗТГКТГ:

value="Y" /> єЩГіТЎТГЎСєв¤Г§ЎТГєГФЎТГЗФЄТЎТГ value="Y" /> ¤ЗТБГиЗББЧН§Т№ЗФЁСВЎСєєШ¤¤ЕАТВ№НЎ

»Х»ЇФ·Ф№

»ХЎТГИЦЎЙТ

»Х§є»ГРБТі

ЗС№·ХиаГФиБ

ЗС№·ХибЕйЗаКГзЁ :

бЛЕи§а§Ф№·Ш№

value="АТВг№" onclick="checkAssign1(this,form1.FundIn)" /> АТВг№	ЁУ№З№а§Ф№ єТ·
value="АТВ№НЎ" onclick="checkAssign1(this,form1.FundOut ,form1.Resource_des )" /> АТВ№НЎ	ЁУ№З№а§Ф№ єТ·
ГЗБЁУ№З№а§Ф№·Ш№	єТ·

execQuery($query); $numrows = $dbObj->_numrows; ?> fetchArray($result) ) { $bgColor = ( $bgColor == "#FFFFFF" ) ? "#F9FBFB" : "#FFFFFF"; ?>

ЄЧиНбїйБўйНБЩЕ	ў№ТґбїйБўйНБЩЕ	ЁУ№З№аўйТ¶Ц§	ЗС№-аЗЕТаўйТ¶Ц§ЕиТКШґ	Download

·Сй§ЛБґ ГТВЎТГ

freeresult($result0); /** Close the Database */ $dbObj->disconn(); /** Unset Class */ unset($dbObj); ?>
bool(false)

:: Command execute ::
Enter:	Select:

:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:

:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/

:: Search ::

:: Upload ::

:: Make Dir ::

:: Make File ::

:: Go Dir ::

:: Go File ::

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.006 ]--