110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/manage_22222/thaimed/ drwxr-xr-x Free 52.34 GB of 127.8 GB (40.95%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686

uid=48(apache) gid=48(apache) groups=48(apache)

Safe-mode: OFF (not secure)

/var/www/html/manage_22222/thaimed/ drwxr-xr-x
Free 52.34 GB of 127.8 GB (40.95%)
Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

Viewing file: EditMassege.php (1.35 KB) -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |

Information:

Path	/var/www/html/manage_22222/thaimed/EditMassege.php
Size	1.35 KB
MD5	5a2701560b033cdeaf8fb210c9e64a5c
Owner/Group	root/root
Perms	-rw-r--r--
Create time	06/07/2011 01:44:26
Access time	31/07/2024 01:26:56
MODIFY time	21/08/2009 09:46:50

FULL HEXDUMP

00000000
00000018
00000030
00000048
00000060
00000078
00000090
000000A8
000000C0
000000D8
000000F0
00000108
00000120
00000138
00000150
00000168
00000180
00000198
000001B0
000001C8
000001E0
000001F8
00000210
00000228
00000240
00000258
00000270
00000288
000002A0
000002B8
000002D0
000002E8
00000300
00000318
00000330
00000348
00000360
00000378
00000390
000003A8
000003C0
000003D8
000003F0
00000408
00000420
00000438
00000450
00000468
00000480
00000498
000004B0
000004C8
000004E0
000004F8
00000510
00000528
00000540
00000558

3C 3F 70 68 70 0D 0A 20 73 65 73 73 69 6F 6E 5F 73 74 61 72 74 28 29 3B
0D 0A 20 69 66 20 28 73 65 73 73 69 6F 6E 5F 69 73 5F 72 65 67 69 73 74
65 72 65 64 28 22 76 61 6C 69 64 5F 75 73 65 72 22 29 29 0D 0A 20 7B 0D
0A 69 6E 63 6C 75 64 65 28 22 2E 2E 2F 69 6E 63 6C 75 64 65 2F 46 75 6E
63 74 69 6F 6E 44 42 2E 70 68 70 22 29 3B 0D 0A 43 6F 6E 6E 65 63 74 44
42 28 29 3B 0D 0A 2F 2F 20 20 0D 0A 20 24 50 61 74 68 20 3D 20 22 2E 2E
2F 69 6D 61 67 65 73 22 3B 20 0D 0A 09 69 66 20 28 20 69 73 73 65 74 28
24 49 6D 67 31 29 20 29 0D 0A 09 69 66 20 28 63 6F 70 79 28 24 49 6D 67
31 2C 22 24 50 61 74 68 2F 24 49 6D 67 31 5F 6E 61 6D 65 22 29 29 20 0D
0A 20 20 20 20 20 20 20 7B 0D 0A 09 09 20 20 20 20 75 6E 6C 69 6E 6B 20
28 24 49 6D 67 31 29 3B 0D 0A 20 20 20 20 20 20 20 20 20 20 20 20 24 49
6D 67 31 20 3D 20 22 24 50 61 74 68 2F 24 49 6D 67 31 5F 6E 61 6D 65 22
3B 0D 0A 09 20 20 20 7D 0D 0A 24 44 61 74 65 42 69 72 74 68 20 3D 20 24
5F 50 4F 53 54 5B 27 6D 59 65 61 72 31 27 5D 2E 22 2D 22 2E 24 5F 50 4F
53 54 5B 27 6D 4D 6F 6E 74 68 31 27 5D 2E 22 2D 22 2E 24 5F 50 4F 53 54
5B 27 6D 44 61 74 65 31 27 5D 3B 0D 0A 24 44 61 74 65 74 79 70 65 20 3D
20 24 5F 50 4F 53 54 5B 27 6D 59 65 61 72 27 5D 2E 22 2D 22 2E 24 5F 50
4F 53 54 5B 27 6D 4D 6F 6E 74 68 27 5D 2E 22 2D 22 2E 24 5F 50 4F 53 54
5B 27 6D 44 61 74 65 27 5D 3B 0D 0A 24 73 71 6C 20 3D 20 22 20 55 50 44
41 54 45 20 20 6D 61 73 73 65 67 65 5F 64 62 20 20 20 53 45 54 20 20 20
20 20 20 4F 72 64 65 72 6C 69 73 74 3D 27 24 4F 72 64 65 72 6C 69 73 74
27 2C 44 65 6E 74 61 6C 5F 63 6F 64 65 3D 27 24 44 65 6E 74 61 6C 5F 63
6F 64 65 27 2C 46 69 72 73 74 5F 6E 61 6D 65 3D 27 24 46 69 72 73 74 5F
6E 61 6D 65 27 2C 4E 61 6D 65 3D 27 24 4E 61 6D 65 27 2C 4C 61 73 74 6E
61 6D 65 3D 27 24 4C 61 73 74 6E 61 6D 65 27 2C 4E 61 6D 65 5F 65 6E 67
3D 27 24 4E 61 6D 65 5F 65 6E 67 27 2C 4C 61 73 74 6E 61 6D 65 5F 65 6E
67 3D 27 20 24 4C 61 73 74 6E 61 6D 65 5F 65 6E 67 27 2C 53 65 78 3D 27
24 53 65 78 27 2C 44 61 74 65 42 69 72 74 68 3D 27 24 44 61 74 65 42 69
72 74 68 27 2C 44 61 74 65 74 79 70 65 3D 27 24 44 61 74 65 74 79 70 65
27 2C 52 65 6C 69 67 69 6F 6E 3D 27 24 52 65 6C 69 67 69 6F 6E 27 2C 41
64 64 72 65 73 73 3D 27 24 41 64 64 72 65 73 73 27 2C 49 6D 67 31 3D 27
24 49 6D 67 31 27 2C 70 72 6F 76 69 6E 63 65 49 64 3D 27 24 70 72 6F 76
69 6E 63 65 49 64 27 2C 50 68 6F 6E 65 5F 31 3D 27 24 50 68 6F 6E 65 5F
31 27 2C 50 68 6F 6E 65 5F 32 3D 27 24 50 68 6F 6E 65 5F 32 27 2C 53 74
61 74 75 73 49 64 3D 27 24 53 74 61 74 75 73 49 64 27 2C 45 6D 61 69 6C
3D 27 24 45 6D 61 69 6C 27 2C 44 65 73 63 72 69 70 74 69 6F 6E 5F 31 3D
27 24 44 65 73 63 72 69 70 74 69 6F 6E 5F 31 27 2C 44 65 73 63 72 69 70
74 69 6F 6E 5F 32 3D 27 24 44 65 73 63 72 69 70 74 69 6F 6E 5F 32 27 2C
59 65 61 72 5F 31 3D 27 24 59 65 61 72 5F 31 27 2C 46 6C 61 67 3D 27 24
46 6C 61 67 27 20 20 20 57 48 45 52 45 20 20 6D 61 73 73 65 67 65 49 64
20 3D 27 24 6D 61 73 73 65 67 65 49 64 27 20 22 3B 0D 0A 24 72 65 73 75
6C 74 20 3D 20 6D 79 73 71 6C 5F 71 75 65 72 79 28 24 73 71 6C 29 20 6F
72 20 64 69 65 28 22 55 70 64 61 74 65 20 45 72 72 6F 72 20 24 73 71 6C
22 2E 6D 79 73 71 6C 5F 65 72 72 6F 72 28 29 29 3B 0D 0A 20 65 63 68 6F
22 3C 6D 65 74 61 20 68 74 74 70 2D 65 71 75 69 76 3D 5C 22 72 65 66 72
65 73 68 5C 22 20 63 6F 6E 74 65 6E 74 3D 5C 22 31 3B 55 52 4C 3D 6D 61
73 73 65 67 65 4C 69 73 74 2E 70 68 70 5C 22 3E 5C 6E 22 3B 0D 0A 65 63
68 6F 22 3C 63 65 6E 74 65 72 3E 3C 66 6F 6E 74 20 66 61 63 65 3D 5C 22
4D 73 20 53 61 6E 20 73 65 72 69 66 5C 22 73 69 7A 65 3D 5C 22 35 5C 22
20 63 6F 6C 6F 72 3D 5C 22 23 46 46 30 30 30 30 5C 22 3E 45 64 69 74 20
20 43 6F 6D 70 6C 65 74 65 3C 2F 66 6F 6E 74 3E 3C 2F 63 65 6E 74 65 72
3E 22 3B 0D 0A 43 6C 6F 73 65 44 42 28 29 3B 0D 0A 3F 3E 0D 0A 3C 3F 70
68 70 20 0D 0A 09 7D 0D 0A 65 6C 73 65 0D 0A 7B 0D 0A 20 20 20 20 20 20
20 65 63 68 6F 22 3C 6D 65 74 61 20 68 74 74 70 2D 65 71 75 69 76 3D 5C
22 72 65 66 72 65 73 68 5C 22 20 63 6F 6E 74 65 6E 74 3D 5C 22 33 3B 55
52 4C 3D 2E 2E 2F 6C 6F 67 69 6E 2E 70 68 70 5C 22 3E 5C 6E 22 3B 0D 0A
20 20 20 20 20 20 20 65 63 68 6F 22 50 6C 65 61 73 65 20 4C 6F 67 69 6E
20 22 3B 0D 0A 7D 0D 0A 3F 3E 0D 0A 0D 0A

<?php   session_start();
   if (session_is_regist
ered("valid_user"))   {
include("../include/Fun
ctionDB.php");  ConnectD
B();  //     $Path = "..
/images";    if ( isset(
$Img1) )   if (copy($Img
1,"$Path/$Img1_name"))
        {       unlink
($Img1);              $I
mg1 = "$Path/$Img1_name"
;      }  $DateBirth = $
_POST['mYear1']."-".$_PO
ST['mMonth1']."-".$_POST
['mDate1'];  $Datetype =
$_POST['mYear']."-".$_P
OST['mMonth']."-".$_POST
['mDate'];  $sql = " UPD
ATE  massege_db   SET
   Orderlist='$Orderlist
',Dental_code='$Dental_c
ode',First_name='$First_
name',Name='$Name',Lastn
ame='$Lastname',Name_eng
='$Name_eng',Lastname_en
g=' $Lastname_eng',Sex='
$Sex',DateBirth='$DateBi
rth',Datetype='$Datetype
',Religion='$Religion',A
ddress='$Address',Img1='
$Img1',provinceId='$prov
inceId',Phone_1='$Phone_
1',Phone_2='$Phone_2',St
atusId='$StatusId',Email
='$Email',Description_1=
'$Description_1',Descrip
tion_2='$Description_2',
Year_1='$Year_1',Flag='$
Flag'   WHERE  massegeId
='$massegeId' ";  $resu
lt = mysql_query($sql) o
r die("Update Error $sql
".mysql_error());   echo
"<meta http-equiv=\"refr
esh\" content=\"1;URL=ma
ssegeList.php\">\n";  ec
ho"<center><font face=\"
Ms San serif\"size=\"5\"
color=\"#FF0000\">Edit
Complete</font></center
>";  CloseDB();  ?>  <?p
hp    }  else  {
echo"<meta http-equiv=\
"refresh\" content=\"3;U
RL=../login.php\">\n";
       echo"Please Login
";  }  ?>

HEXDUMP: [Full] [Preview]
Base64: [Encode] [+chunk] [+chunk+quotes] [Decode]

:: Command execute ::
Enter:	Select:

:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:

:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/

:: Search ::

:: Upload ::

:: Make Dir ::

:: Make File ::

:: Go Dir ::

:: Go File ::

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0132 ]--