!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6 

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686
 

uid=48(apache) gid=48(apache) groups=48(apache) 

Safe-mode: OFF (not secure)

/var/www/html/mis/application/config/   drwxr-xr-x
Free 51.23 GB of 127.8 GB (40.08%)
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     mimes.php (4.28 KB)      -rwxr-xr-x
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
<?php  if ( ! defined('BASEPATH')) exit('No direct script access allowed');
/*
| -------------------------------------------------------------------
| MIME TYPES
| -------------------------------------------------------------------
| This file contains an array of mime types.  It is used by the
| Upload class to help identify allowed file types.
|
*/

$mimes = array(    'hqx'    =>    'application/mac-binhex40',
                
'cpt'    =>    'application/mac-compactpro',
                
'csv'    =>    array('text/x-comma-separated-values''text/comma-separated-values''application/octet-stream''application/vnd.ms-excel''text/x-csv''text/csv''application/csv''application/excel''application/vnd.msexcel'),
                
'bin'    =>    'application/macbinary',
                
'dms'    =>    'application/octet-stream',
                
'lha'    =>    'application/octet-stream',
                
'lzh'    =>    'application/octet-stream',
                
'exe'    =>    array('application/octet-stream''application/x-msdownload'),
                
'class'    =>    'application/octet-stream',
                
'psd'    =>    'application/x-photoshop',
                
'so'    =>    'application/octet-stream',
                
'sea'    =>    'application/octet-stream',
                
'dll'    =>    'application/octet-stream',
                
'oda'    =>    'application/oda',
                
'pdf'    =>    array('application/pdf''application/x-download'),
                
'ai'    =>    'application/postscript',
                
'eps'    =>    'application/postscript',
                
'ps'    =>    'application/postscript',
                
'smi'    =>    'application/smil',
                
'smil'    =>    'application/smil',
                
'mif'    =>    'application/vnd.mif',
                
'xls'    =>    array('application/excel''application/vnd.ms-excel''application/msexcel''application/xls''application/x-msexcel','application/ms-xls'),
                
'ppt'    =>    array('application/powerpoint''application/vnd.ms-powerpoint'),
                
'wbxml'    =>    'application/wbxml',
                
'wmlc'    =>    'application/wmlc',
                
'dcr'    =>    'application/x-director',
                
'dir'    =>    'application/x-director',
                
'dxr'    =>    'application/x-director',
                
'dvi'    =>    'application/x-dvi',
                
'gtar'    =>    'application/x-gtar',
                
'gz'    =>    'application/x-gzip',
                
'php'    =>    'application/x-httpd-php',
                
'php4'    =>    'application/x-httpd-php',
                
'php3'    =>    'application/x-httpd-php',
                
'phtml'    =>    'application/x-httpd-php',
                
'phps'    =>    'application/x-httpd-php-source',
                
'js'    =>    'application/x-javascript',
                
'swf'    =>    'application/x-shockwave-flash',
                
'sit'    =>    'application/x-stuffit',
                
'tar'    =>    'application/x-tar',
                
'tgz'    =>    array('application/x-tar''application/x-gzip-compressed'),
                
'xhtml'    =>    'application/xhtml+xml',
                
'xht'    =>    'application/xhtml+xml',
                
'zip'    =>  array('application/x-zip''application/zip''application/x-zip-compressed'),
                
'mid'    =>    'audio/midi',
                
'midi'    =>    'audio/midi',
                
'mpga'    =>    'audio/mpeg',
                
'mp2'    =>    'audio/mpeg',
                
'mp3'    =>    array('audio/mpeg''audio/mpg''audio/mpeg3''audio/mp3'),
                
'aif'    =>    'audio/x-aiff',
                
'aiff'    =>    'audio/x-aiff',
                
'aifc'    =>    'audio/x-aiff',
                
'ram'    =>    'audio/x-pn-realaudio',
                
'rm'    =>    'audio/x-pn-realaudio',
                
'rpm'    =>    'audio/x-pn-realaudio-plugin',
                
'ra'    =>    'audio/x-realaudio',
                
'rv'    =>    'video/vnd.rn-realvideo',
                
'wav'    =>    'audio/x-wav',
                
'bmp'    =>    'image/bmp',
                
'gif'    =>    'image/gif',
                
'jpeg'    =>    array('image/jpeg''image/pjpeg'),
                
'jpg'    =>    array('image/jpeg''image/pjpeg'),
                
'jpe'    =>    array('image/jpeg''image/pjpeg'),
                
'png'    =>    array('image/png',  'image/x-png'),
                
'tiff'    =>    'image/tiff',
                
'tif'    =>    'image/tiff',
                
'css'    =>    'text/css',
                
'html'    =>    'text/html',
                
'htm'    =>    'text/html',
                
'shtml'    =>    'text/html',
                
'txt'    =>    'text/plain',
                
'text'    =>    'text/plain',
                
'log'    =>    array('text/plain''text/x-log'),
                
'rtx'    =>    'text/richtext',
                
'rtf'    =>    'text/rtf',
                
'xml'    =>    'text/xml',
                
'xsl'    =>    'text/xml',
                
'mpeg'    =>    'video/mpeg',
                
'mpg'    =>    'video/mpeg',
                
'mpe'    =>    'video/mpeg',
                
'qt'    =>    'video/quicktime',
                
'mov'    =>    'video/quicktime',
                
'avi'    =>    'video/x-msvideo',
                
'movie'    =>    'video/x-sgi-movie',
                
'doc'    =>    'application/msword',
                
'docx'    =>    'application/vnd.openxmlformats-officedocument.wordprocessingml.document',
                
'xlsx'    =>    'application/vnd.openxmlformats-officedocument.spreadsheetml.sheet',
                
'word'    =>    array('application/msword''application/octet-stream'),
                
'xl'    =>    'application/excel',
                
'eml'    =>    'message/rfc822',
                
'json' => array('application/json''text/json')
            );


/* End of file mimes.php */
/* Location: ./application/config/mimes.php */

:: Command execute ::

Enter:
 
Select:
 

:: Shadow's tricks :D ::

Useful Commands
 
Warning. Kernel may be alerted using higher levels
Kernel Info:

:: Preddy's tricks :D ::

Php Safe-Mode Bypass (Read Files)

File:

eg: /etc/passwd

Php Safe-Mode Bypass (List Directories):

Dir:

eg: /etc/

:: Search ::
  - regexp 

:: Upload ::
 
[ ok ]

:: Make Dir ::
 
[ ok ]
:: Make File ::
 
[ ok ]

:: Go Dir ::
 
:: Go File ::
 

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0067 ]--