!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6 

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686
 

uid=48(apache) gid=48(apache) groups=48(apache) 

Safe-mode: OFF (not secure)

/var/www/html/mis/js/   drwxr-xr-x
Free 51.23 GB of 127.8 GB (40.08%)
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     rg_js.js (5.76 KB)      -rwxr-xr-x
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
function sendRequest(el) {
	var silentId = document.getElementById("silent");
	var innerTag = "";
	if(silentId && el && el.href) {
		var uri = el.href.split("?");
		var cnt = null;
		var pair = null;
		if(uri[1]) {
			cnt = uri[1].split("&");
			for(var i = 0; i < cnt.length; i++) {
				pair = cnt[i].split("=");
				innerTag += "<input type=\"hidden\" name=\"" + pair[0] + "\" value=\"" + pair[1] + "\">";
			}
			silentId.action = uri[0];
			silentId.innerHTML = innerTag;
			setTimeout("document.forms['silent'].submit()", 100);
		}
	}
	return false;
}

function futureDayJS(dateVar, numDay) {
	var inputDate = dateVar.split("/");
	var dateObj = new Date(inputDate[2], inputDate[1]-1, inputDate[0], 01, 01, 01, 01);
	var futureDay = new Date(Date.parse(dateObj) + (numDay * 24 * 60 * 60 * 1000));
	var str = "0";
	var dd = String(futureDay.getDate());
	var mm = String(futureDay.getMonth() + 1);

	if(dd.length < 2)
		dd = str.concat(dd);

	if(mm > 12)
		mm = 12;
	if(mm.length < 2)
		mm = str.concat(mm);

	return dd+"/"+mm+"/"+futureDay.getFullYear();
}

function checkWeekDayJS(dateVar, weekDayVar) {
	var inputDate = dateVar.split("/");

	if(typeof(inputDate[2]) != "undefined") {
		//new Date(year, month, day, hours, minutes, seconds, milliseconds)
		dateObj = new Date(inputDate[2], inputDate[1]-1, inputDate[0], 01, 01, 01, 01);
			
		if(dateObj.getDay() == weekDayVar)
			return true;
		else
			return false;
	}

	return false;
}

function isDate (dd, mm, yy, msg)
{
	if((mm==4 || mm==6 || mm==9 || mm==11) && dd==31) {
		alert(msg);
		return false;
	}
		
	if(mm==2) {
		var isLeap = (yy % 4 == 0 && (yy % 100 != 0 || yy % 400 == 0));
		if (dd > 29 || (dd==29 && !isLeap)) {
			alert(msg);
			return false;
		}
	}
		
	return true;
}

function autotab(original, destination){
	if (original.getAttribute && original.value.length==original.getAttribute("maxlength")) destination.focus();
}


function diff2Dates(f) {
	var date1 = f.startDate.value.split("-");
	var date2 = f.endDate.value.split("-");
	//Set the two dates
	date1 = new Date(eval(date1[2]), eval(date1[1]-1), eval(date1[0]));
	date2 = new Date(eval(date2[2]), eval(date2[1]-1), eval(date2[0])); //Month is 0-11 in JavaScript
	//Set 1 day in milliseconds
	var one_day = 1000*60*60*24;
	//Calculate difference btw the two dates, and convert to days
	var diff = Math.ceil((date2.getTime()-date1.getTime())/(one_day));
		
	if(diff < 0)
	{
		alert("วันที่ไม่สัมพันธ์กัน");
		return false;
	}
	f.dayAmount.value = diff+1;
}

function doCheckAll(form,do_check){
	for (var i=0; i<form.length; i++)
	{
		if(form.elements[i].type == 'checkbox')
			form.elements[i].checked = do_check;
	}
}

function confirmSubmit(msg) {
	var agree=confirm(msg);
	//var agree=confirm("คุณต้องการลบข้อมูลแน่นอนใช่หรือไม่?");
	if (agree)
		return true ;
	else
		return false ;
}

function checkFormatLogin() {
	x = document.forms[0];
	ele = new Array(x.length-1);
	i=0;
	while(i < x.length-1) {
		ele[i] = x.elements[i];
		i++;
	}
	i=0;
	while(i < ele.length) {
		if(ele[i].value == "")
		{
			alert("กรุณากรอก "+ele[i].name+" !");
			ele[i].focus();
			return false;
		}
		if(ele[i].value=="0" && ele[i].type!="hidden")
		{
			alert("กรุณากรอก "+ele[i].name+" !");
			ele[i].focus();
			return false;
		}
		i++;
	}
}

function confirmDelete() {
	if(confirm("คุณต้องการลบข้อมูลแน่นอนใช่หรือไม่?"))
		return true;
	else
		return false;
}

function doCheckAll(form, do_check) {
	for(var i=0; i<form.length; i++) {
		if(form.elements[i].type == 'checkbox')
			form.elements[i].checked = do_check;
	}
}

function isvaliddate(txtStart, txtEnd, msg) {
	var retval = true;
	var ArrayStartDay = txtStart.split("/");
	var ArrayStopDay = txtEnd.split("/");
	var StartDay = ArrayStartDay[2] + ArrayStartDay[1] + ArrayStartDay[0];
	var StopDay = ArrayStopDay[2] + ArrayStopDay[1] + ArrayStopDay[0];
	var msg = (msg) ? msg : "วันที่ไม่ถูกต้อง";
	
	if(StartDay > StopDay) {
		alert(msg);
		retval = false;
	}
	
	return retval;
}

function checkFormat(txtStart, txtEnd) {
	//alert("enter checkFormat");
	if (txtStart && txtEnd) {
		//alert("receive 2 variable");
		var oblen = txtStart.length;
		for (var i = 0; i < oblen; i++) {
			if (!isvaliddate(txtStart[i], txtEnd[i])) {
				return false;
			}
		}
		return true;
	}
}

//--- เช็คว่ากรอกข้อมูลได้เฉพาะตัวเลข ---
//--- ใช้ในหน้าวิว onKeyDown="document.onkeydown=check_number" ----
function check_number(e) {
	var key;
	if (window.event) key = window.event.keyCode; // ใช้กับ IE 
	else if (e) key = e.which; // ใช้กับ Firefox 
		if (key = 13 && key != 8 && key != 9 && key != 16 && key != 17 && key != 20 && key != 35 && key != 36 && key != 46 && (key < 48) || (key > 57) && (key < 96) || (key > 105) && key != 116) { 
			//alert(key);
			return false;
        }
} 

//--- เช็คการกรอกข้อมูลที่กรอกได้เฉพาะตัวเลข ---
function keyCode(evt){
	var key = (evt.which) ? evt.which : event.keyCode
	if (key < 48 || key > 57)
		return false;
	else
		return true;
}

jQuery(document).ready(function($)
{
	//first slide down and blink the alert box
    $("#object").animate({ 
        top: "0px"
      }, 1000 ).fadeOut(2000);
   
   //close the message box when the cross image is clicked 
   $("#close_message").click(function()
	{
	   $("#object").fadeOut("slow");
	});
});

:: Command execute ::

Enter:
 
Select:
 

:: Shadow's tricks :D ::

Useful Commands
 
Warning. Kernel may be alerted using higher levels
Kernel Info:

:: Preddy's tricks :D ::

Php Safe-Mode Bypass (Read Files)

File:

eg: /etc/passwd

Php Safe-Mode Bypass (List Directories):

Dir:

eg: /etc/

:: Search ::
  - regexp 

:: Upload ::
 
[ ok ]

:: Make Dir ::
 
[ ok ]
:: Make File ::
 
[ ok ]

:: Go Dir ::
 
:: Go File ::
 

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0054 ]--