110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/manage/ drwxr-xr-x Free 52.98 GB of 127.8 GB (41.45%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

<?php



    /**  Define Validate Access  */

    define( '_VALID_ACCESS', 1 );

    

    /**  Configuration  */

    include( "configuration.php" );

    require_once( $_Config_absolute_path . "/includes/framework.php" );



    /**  Create Database Object  */

    $dbObj = new DBConn;

    

    

    /**  using 'reg' DB  */

    include("./includes/FunctionDB.php");

    include("./includes/Function.php");

    ConnectDB();  

    /**  Config Table for This Page  */

    $myTable = "StudentMaster";

    $myTableFK = "studentId";

    $sql = " SELECT *  FROM  $myTable    WHERE  graduateYear ='$graduateYear' ";

    $result = $dbObj->execQuery($sql);

    $rs = $dbObj->fetchArray($result);

    $dbObj->freeresult($result);

        

        

        

    /**  Config Table for This Page  */

    



    

    

?>

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">

<head>

<meta http-equiv="Content-Type" content="text/html; charset=windows-874" />

<title><?=$_Config_sitename;?> - ўйНБЩЕЅиТВЗФЄТЎТГ - ГТВЄЧиНЛЕСЎКЩµГ</title>

<script type="text/javascript" src="./js/utilities.js"></script>

<link href="./css/default.css" rel="stylesheet" type="text/css" />

</head>



<body topmargin="0" rightmargin="0" bottommargin="0" leftmargin="0">

<?php

    include( "./templates/incHeader.php" );

?>

<table width="1003" border="0" cellspacing="0" cellpadding="0">

  <tr>

    <td width="215" align="left" valign="top" style="padding:10px 0px 0px 5px"><?php include( "templates/incMainMenuLeft.php" );?></td>

    <td width="788" height="300" align="center" valign="top" style="padding:10px 0px 5px 10px">

    <?php

        

    ?>

    <fieldset><table width="770" border="0" cellspacing="0" cellpadding="0">

     <form id="myForm" name="myForm" method="post" action="<?=$PHP_SELF;?>?page=<?=$page;?>&amp;<?=$param;?>">

      <tr>

        <td height="5"></td>

      </tr>

      <tr>

        <td height="30" background="images/background/bg-head-topic-w780.gif"><span class="PADDING-LEFT-10"><strong><a href="index.php">Л№йТЛЕСЎ</a></strong> <strong>&raquo; <a href="Menu_Student.php">КТГК№а·И№СЎИЦЎЙТ</a>&raquo; <span class="NOTE">ЁУ№З№№СЎИЦЎЙТ·ХиКУаГзЁЎТГИЦЎЙТЁУб№ЎµТБГРґСєЎТГИЦЎЙТ </span></strong></span></td>

        </tr>

      <tr>

        <td><span class="PADDING-TOP-10"><img src="images/icons/arrow-circle-225-left.png" width="16" height="16" border="0" align="absmiddle" /> <a href="javascript:;" onclick="window.history.back();"><strong>&lsaquo; ВйН№ЎЕСє</strong></a></span></td>

      </tr>

      <tr>

        <td align="center" valign="top"><table width="97%" border="0" align="center" cellpadding="0" cellspacing="0">



          <tr>

            <td width="76%" align="left" style="padding-bottom:5px;">·Сй§ЛБґ: <strong><?=2;?></strong> ГТВЎТГ</td>

            <td width="24%" align="right" style="padding-bottom:5px;">&nbsp;</td>

          </tr>

        </table>

          <table width="730" border="0" align="center" cellpadding="0" cellspacing="0" class="BORDER-GREY">

            <tr bgcolor="#F0F0F0">

              <td width="49" height="25" align="center"><strong>No</strong></td>

              <td width="514" align="center" class="BORDER-LEFT-RIGHT">ГРґСєЎТГИЦЎЙТ</td>

              <td width="167" align="center"><strong>ЁУ№З№№СЎИЦЎЙТ( ¤№)</strong></td>

            </tr>

            <?php 

          

          ?>

            <tr bgcolor="<?=$bgColor;?>" onmouseover="this.style.backgroundColor='#F5F9F9'" onmouseout="this.style.backgroundColor=''">

              <td height="22" align="center" class="BORDER-TOP"><?=1?></td>

              <td align="left" class="PADDING-LEFT-5 PADDING-RIGHT-5 BORDER-TOP-LEFT-RIGHT"><?php echo »ГРЎТИ№ХВєСµГ;?></a></td>

              <td align="center" class="BORDER-TOP"><strong>

                <?php

                $query6 = " SELECT *  FROM  StudentMaster  WHERE    studentStatus='4'   AND   levelId ='1'  AND   graduateYear  ='$rs[graduateYear]'   ";

                    $result6 = $dbObj->execQuery($query6);

                    $countnum6 = $dbObj->_numrows;

                $dbObj->freeresult($result6);

                        echo number_format( $countnum6 );

                ?>

              </strong></td>

            </tr>

            <tr bgcolor="<?=$bgColor;?>" onmouseover="this.style.backgroundColor='#F5F9F9'" onmouseout="this.style.backgroundColor=''">

              <td height="18" align="center" class="BORDER-TOP"><?=2?></td>

              <td align="left" class="PADDING-LEFT-5 PADDING-RIGHT-5 BORDER-TOP-LEFT-RIGHT"><?php echo »ГРЎТИ№ХВєСµГЗФЄТЄХѕЄСй№КЩ§;?></td>

              <td align="center" class="BORDER-TOP"><strong>

                <?php

                $query6 = " SELECT *  FROM  StudentMaster  WHERE    studentStatus='4'   AND   levelId ='2'  AND   graduateYear  ='$rs[graduateYear]'   ";

                    $result6 = $dbObj->execQuery($query6);

                    $countnum6 = $dbObj->_numrows;

                $dbObj->freeresult($result6);

                        echo number_format( $countnum6 );

                ?>

              </strong></td>

            </tr>

            <tr bgcolor="<?=$bgColor;?>" onmouseover="this.style.backgroundColor='#F5F9F9'" onmouseout="this.style.backgroundColor=''">

              <td height="18" align="center" class="BORDER-TOP"><?=3?></td>

              <td align="left" class="PADDING-LEFT-5 PADDING-RIGHT-5 BORDER-TOP-LEFT-RIGHT"><?php echo »ГФТµГХ ; ?></a></td>

              <td align="center" class="BORDER-TOP"></a><strong>

                <?php

                $query6 = " SELECT *  FROM  StudentMaster  WHERE  studentStatus='4'   AND   levelId ='3'  AND    graduateYear  ='$rs[graduateYear]'   ";

                    $result6 = $dbObj->execQuery($query6);

                    $countnum6 = $dbObj->_numrows;

                $dbObj->freeresult($result6);

                        echo number_format( $countnum6 );

                ?>

              </strong></td>

            </tr>

            <tr bgcolor="<?=$bgColor;?>" onmouseover="this.style.backgroundColor='#F5F9F9'" onmouseout="this.style.backgroundColor=''">

              <td height="18" align="center" class="BORDER-TOP">&nbsp;</td>

              <td align="left" class="PADDING-LEFT-5 PADDING-RIGHT-5 BORDER-TOP-LEFT-RIGHT"><strong>ГЗБ·Сй§ЛБґ (¤№)</strong></td>

              <td align="center" class="BORDER-TOP"><strong>

                <?php

                $query6 = " SELECT *  FROM  StudentMaster  WHERE    studentStatus='4'  AND    graduateYear  ='$rs[graduateYear]'    ";

                    $result6 = $dbObj->execQuery($query6);

                    $countnum6 = $dbObj->_numrows;

                $dbObj->freeresult($result6);

                        echo number_format( $countnum6 );

                ?>

              </strong></td>

            </tr>

            <?php 

           

          ?>

          </table>

          </p></td>

      </tr>

      <tr>

        <td>&nbsp;</td>

      </tr></form>

    </table>

    </fieldset></td>

  </tr>

</table>

<?php include( "./templates/incFooter.php" ); ?>

</body>

</html>

<?php

    /**  Free Resource */

    $dbObj->freeresult($result);



    /**  Close the Database  */

    $dbObj->disconn();

    CloseDB();

    

    /**  Unset Class  */

    unset($dbObj);

?>
:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:
:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/
:: Command execute ::
Enter:	Select: