!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6 

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686 

uid=48(apache) gid=48(apache) groups=48(apache) 

Safe-mode: OFF (not secure)

/var/www/html/mis2222/application/views/eregis/   drwxrwxrwx
Free 50.65 GB of 127.8 GB (39.63%)
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     v_rptRis106popup_backup.php (13.17 KB)      -rwxr-xr-x
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
<table width="650" border="0" align="center" cellpadding="0" cellspacing="0">
    <tr>
        <td height="22" align="right"><font size="2"><b>(สำหรับนักศึกษา)</b></font></td>
    </tr>
    <tr>
        <td><table width="650" align="center" cellpadding="0" cellspacing="1" border="0">
<?php
/*            $oSm->SearchByKey($studentId);
            $oSm->GetRecord();
            $oPf->SearchByKey($oSm->prefixId);
            $oPf->GetRecord();
            $oPg->SearchByKey($oSm->programId);
            $oPg->GetRecord();
            $oEf->RSEnrollFeeByStIdAndAcYAndSe($studentId, $acadYear, $semester);
            $oEf->GetRecord();*/
?>
            <tr>
                <td width="10%" height="22" rowspan="3" align="center"><img src="<?=base_url().$this->config->item('rg_upload_picture').$cfgClgLogo;?>" width="77" height="66" align="absmiddle" border="0"></td>
                <td width="40%"><font size="2"><b>ใบแจ้งยอดการชำระเงิน</b></font></td>
                <td width="50%"><font size="2"><b><?php echo $cfgClgName;?></b></font></td>
            </tr>
            <tr>
                <td height="22"><font size="2">ปีการศึกษา <?php echo $acY;?>
                ภาคการศึกษาที่ <?php echo $tmId;?></font></td>
                <td><font size="2"><?php echo $cfgClgAddr;?></font></td>
            </tr>
            <tr>
                <td height="22"><font size="2" >หลักสูตร <? //if($qu_cur->num_rows()) { $row = $qu_cur->row(); echo $row->curAbbr; }?>
                ชั้นปี <?php echo $studentYear;?></font></td>
                <td><font size="2" ><?php echo $cfgClgPhoneNo;?></font></td>
            </tr>

            <tr>
                <td height="22"><font size="2" >ชื่อ-สกุล (นศ.)</font></td>
                <td><font size="2" ><? if($qu_std->num_rows()) { $row $qu_std->row();  echo $row->prefixName.$row->stdName.' '.$row->stdSurname; }?></font></td>
                <td><font size="2" >วันที่ .............../.............../...............</font></td>
            </tr>
            <tr>
                <td height="22"><font size="2" >Cust NO.</font></td>
                <td><font size="2" ><? if($qu_std->num_rows()) { $row $qu_std->row();  echo $row->stdCode; }?></font></td>
                <td><font size="2" >Ref NO. <? if($qu_reg->num_rows()) { $row $qu_reg->row();  echo $row->rfRefNo; }?></font></td>
            </tr>
        </table></td>
    </tr>
     <tr>
        <td align="center"><table align="center" width="650" cellspacing="0" cellpadding="0" border="0">
            <tr bgcolor="<?=$this->config->item("rg_head_tb_color");?>">
                <td width="5%" height="22" align="center"><font size="2"><b>ที่</b></font></td>
                <td width="60%" align="center"><font size="2"><b>รายการ</b></font></td>
                <td width="10%"></td>
                <td width="10%" align="center"><font size="2"><b>จำนวนเงิน</b></font></td>
                <td width="15%"></td>
            </tr>
            <tr>
                <td align="center"><font size="2">1</font></td>
                <td><font size="2">ค่าหน่วยกิต</font></td>
                <td></td>
                <td></td>
                <td>&nbsp;<font size="2">เบิกได้ตามสิทธิ์</font></td>
            </tr></table></td></tr>
<?php
/*            $oEi->RSEnrollItemByStIdAndAcYAndSe($studentId, $acadYear, $semester);
            while($oEi->GetRecord()) {
                $oCl->SearchByKey($oEi->classId);
                $oCl->GetRecord();
                $oCo->SearchByKey($oCl->courseId);
                $oCo->GetRecord();*/
?>
            <!-- <tr>
                <td></td>
                <td><font size="2"><?php echo $oCo->courseCode.' : '.$oCo->courseName;?></font></td>
                <td align="center"><font size="2"><?php echo $oCo->courseUnit;?></font></td>
                <td align="right"><font size="2">-</font></td>
                <td></td>
            </tr> -->
<?php
/*            }
            
            $sumLcFee = $oCof->GetSumLcFeeByStIdAndAcYAndSe($studentId, $acadYear, $semester);
            $sumLbFee = $oCof->GetSumLbFeeByStIdAndAcYAndSe($studentId, $acadYear, $semester);  */
?>
            <!-- <tr>
                <td></td>
                <td align="right"><font size="2"><b>รวมหน่วยกิตทฤษฎี</b></font></td>
                <td align="center"><font size="2"><b><?php // echo number_format($oEi->GetSumCr1ByStIdAndAcYAndSe($studentId, $acadYear, $semester));?></b></font></td>
                <td align="right"><font size="2"><b><?php //echo number_format($sumLcFee, 2);?></b></font></td>
                <td></td>
            </tr>
            <tr>
                <td></td>
                <td align="right"><font size="2"><b>รวมหน่วยกิตทดลอง/ปฏิบัติ</b></font></td>
                <td align="center"><font size="2"><b><?php //echo number_format($oEi->GetSumCr2ByStIdAndAcYAndSe($studentId, $acadYear, $semester));?></b></font></td>
                <td align="right"><font size="2"><b><?php //echo number_format($sumLbFee, 2);?></b></font></td>
                <td></td>
            </tr>
            <tr>
                <td></td>
                <td align="right"><font size="2"><b>รวมหน่วยกิตที่ลงทะเบียน</b></font></td>
                <td align="center"><font size="2"><b><?php //echo number_format($oEi->GetSumCrAtByStIdAndAcYAndSe($studentId, $acadYear, $semester));?></b></font></td>
                <td align="right"><font size="2"><b><?php //echo number_format($sumLcFee+$sumLbFee, 2);?></b></font></td>
                <td></td>
            </tr> -->
<?php
/*            $i = 2;
            $oCf->RSCommonFeeByStIdAndAcYAndSe($studentId, $acadYear, $semester);
            while($oCf->GetRecord()) {
                $oFe->SearchByKey($oCf->feeId);
                $oFe->GetRecord();*/
?>
            <!-- <tr>
                <td align="center"><font size="2"><?php echo $i;?></font></td>
                <td><font size="2"><?php echo $oFe->feeName;?></font></td>
                <td></td>
                <td align="right"><font size="2"><?php echo number_format($oCf->amount2);?></font></td>
                <td>&nbsp;<font size="2"><?php if($oFe->canRefund=='Y') echo 'เบิกได้ตามสิทธิ์'; else echo 'เบิกไม่ได้';?></font></td>
            </tr> -->
<?php
/*                $i++;
            }
            
            $j = $i;
            $oPgf->RSProgramFeeByStIdAndAcYAndSe($studentId, $acadYear, $semester);
            while($oPgf->GetRecord()) {
                $oFe->SearchByKey($oPgf->feeId);
                $oFe->GetRecord();*/
?>
            <!-- <tr>
                <td align="center"><font size="2"><?php echo $j;?></font></td>
                <td><font size="2"><?php echo $oFe->feeName;?></font></td>
                <td></td>
                <td align="right"><font size="2"><?php echo number_format($oPgf->amount2);?></font></td>
                <td>&nbsp;<font size="2"><?php if($oFe->canRefund=='Y') echo 'เบิกได้ตามสิทธิ์'; else echo 'เบิกไม่ได้';?></font></td>
            </tr> -->
<?php
/*                $j++;
            }*/
?>
            <!-- <tr>
                <td align="center"><font size="2"><?php //echo $j;?></font></td>
                <td><font size="2">ค่ารักษาสถานภาพการเป็นนักศึกษา</font></td>
                <td></td>
                <td align="right"><font size="2"><?php //echo number_format($oCof->GetSumKssFeeByStIdAndAcYAndSe($studentId, $acadYear, $semester), 2);?></font></td>
                <td>&nbsp;<font size="2">เบิกไม่ได้</font></td>
            </tr>
            <tr bgcolor="<?php //echo $GLOBALS["COLOR_BG_TD_2"];?>">
                <td height="22" colspan="2"><font size="2">(<?php //echo convertNumberToString($oEf->GetSumTtAmtByStIdAndAcYAndStYAndSe($studentId, $acadYear, $studentYear, $semester));?>ถ้วน)</font></td>
                <td><font size="2"><b>รวม</b></font></td>
                <td align="right"><font size="2"><?php //echo number_format($oEf->GetSumTtAmtByStIdAndAcYAndStYAndSe($studentId, $acadYear, $studentYear, $semester), 2);?></font></td>
                <td></td>
            </tr>
        </table></td>
    </tr> -->
<?php
/*    $oSd->SearchByKey($acadYear, $semester);
    $oSd->GetRecord();*/
?>
    <!-- <tr>
        <td><table width="650">
            <tr>
                <td width="60%" height="22"><font size="2"><b>กำหนดชำระเงิน ภายในวันที่</b> <?php echo fullDate(splitDateDb($oSd->paySDate)).' - '.fullDate(splitDateDb($oSd->payEDate));?></font></td>
                <td width="40%" align="center"><font size="2">ได้ชำระเงินตามจำนวนข้างต้นเรียบร้อยแล้ว</font></td>
            </tr>
            <tr>
                <td><font size="2"><b>หากพ้นกำหนดนี้ถือว่าไม่ได้ลงทะเบียน</b></font></td>
                <td></td>
            </tr>
            <tr>
                <td><font size="2"><b>** ค่าธรรมเนียมผ่านธนาคาร (<?php echo number_format($GLOBALS["COLLEGEBANKFEE"]);?> บาท ทั่วประเทศ)</b></font></td>
                <td align="center"><font size="2">......................................................</font></td>
            </tr>
            <tr>
                <td><font size="2">(เก็บเอกสารฉบับนี้ไว้เป็นหลักฐานการลงทะเบียน)</font></td>
                <td align="center"><font size="2">ผู้รับเงิน (ประทับตราธนาคาร)</font></td>
            </tr>
            <tr>
                <td></td>
                <td align="center"><font size="2">วันที่.........................................................</font></td>
            </tr>
            <tr>
                <td colspan="2"><font size="2">***เพื่อความสะดวกของท่าน กรุณานำสลิปฉบับนี้ไปชำระเงินได้ที่ <?php echo $GLOBALS["COLLEGEBANKNAME"];?> ทุกสาขาทั่วประเทศ***</font></td>
            </tr>
        </table></td>
    </tr>
    <tr>
        <td height="22">..................................................................................................................................</td>
    </tr>
    <tr>
        <td height="22" align="right"><font size="2">(ส่วนนี้สำหรับธนาคาร)</font></td>
    </tr>
    <tr>
        <td height="66" align="right" valign="baseline"><font size="2"><b>โปรดเรียกเก็บค่าธรรมเนียมจากผู้ชำระเงิน</b></font></td>
    </tr>
    <tr>
        <td><table width="650" border="1" cellpadding="0" cellspacing="0" bordercolor="#000000">
            <tr>
                <td align="center"><table width="630" border="1" cellpadding="0" cellspacing="0" bordercolor="#FFFFFF">
                    <tr>
                        <td width="20%" rowspan="2" align="center"><img src="<?php echo $GLOBALS["COLLEGELOGO"];?>" width="77" height="66" align="absmiddle" border="0"></td>
                        <td width="40%"><font size="2">เพื่อเข้าบัญชี "<?php echo $GLOBALS["COLLEGEBANKACCOUNT"];?>"</font></td>
                        <td width="40%"><font size="2"><b>ใบแจ้งการชำระเงินเพื่อนำเข้าบัญชี</b></font></td>
                    </tr>
                    <tr>
                        <td height="44" valign="baseline"><font size="2"><?php echo $GLOBALS["COLLEGEPHONENO"];?></font></td>
                        <td valign="bottom"><font size="2">วันที่ .............../.............../...............</font></td>
                    </tr> -->
<?php
/*                    $oPf->SearchByKey($oSm->prefixId);
                    $oPf->GetRecord();*/
?>
                    <!-- <tr>
                        <td height="22" align="center"><input type="checkbox">
                        <img src="<?php echo $GLOBALS["COLLEGEBANKLOGO"];?>" width="44" height="20" align="absmiddle" border="0"></td>
                        <td><font size="2"><b><?php echo $GLOBALS["COLLEGEBANKNAME"];?> เลขที่บัญชี</b></font></td>
                        <td bordercolor="#000000"><font size="2">ชื่อ-สกุล : <?php echo $oPf->prefixName.$oSm->studentName.' '.$oSm->studentSurname;?></font></td>
                    </tr>
                    <tr>
                        <td height="44"></td>
                        <td valign="baseline"><font size="2"><?php echo $GLOBALS["COLLEGEBANKNO"];?> (Bill Payment)</font></td>
                        <td bordercolor="#000000"><font size="2">Cust. NO : <?php echo $oSm->studentCode;?><br>
                        Ref.NO : <?php echo $oEf->refNo;?></font></td>
                    </tr>
                    <tr>
                        <td height="88" colspan="2" align="center" valign="bottom"><font size="2"><b>** รับเฉพาะเงินสด **</b></font></td>
                        <td align="center" valign="baseline" bordercolor="#000000" bgcolor="#CCCCCC"><font size="2">สำหรับเจ้าหน้าที่ธนาคาร</font></td>
                    </tr>
                    <tr>
                        <td height="22"><font size="2"><b>จำนวนเงินเป็นตัวเลข</b></font></td>
                        <td align="right" bordercolor="#000000"><font size="2"><?php echo number_format($oEf->GetSumTtAmtByStIdAndAcYAndStYAndSe($studentId$acadYear$studentYear$semester), 2);?> <b>บาท</b></font></td>
                        <td bordercolor="#000000"><font size="2">ผู้รับเงิน</font></td>
                    </tr>
                    <tr>
                        <td height="22"><font size="2"><b>จำนวนเงินเป็นตัวอักษร</b></font></td>
                        <td bordercolor="#000000"><font size="2"><?php echo convertNumberToString($oEf->GetSumTtAmtByStIdAndAcYAndStYAndSe($studentId$acadYear$studentYear$semester));?>ถ้วน</font></td>
                        <td bordercolor="#000000"><font size="2">ผู้รับมอบอำนาจ</font></td>
                    </tr>
                    <tr>
                        <td height="22" colspan="3"><font size="1">เพื่อความสะดวกของท่าน กรุณานำสลิปฉบับนี้ไปชำระเงินได้ที่ <?php echo $GLOBALS["COLLEGEBANKNAME"];?> ทุกสาขาทั่วประเทศ
                        ชื่อผู้นำฝาก/โทร............................</font></td>
                    </tr>
                </table></td>
            </tr>
        </table></td>
    </tr>
    <tr>
        <td height="22"></td>
    </tr> -->
    <tr>
        <td align="center"><input type="submit" name="print" value="พิมพ์หน้านี้" onClick="javascript:window.print();">
        <input type="submit" name="close" value="ปิดหน้าต่าง" onClick="javascript:window.close();"></td>
    </tr>
</table>

:: Command execute ::

Enter:
 
Select:
 

:: Shadow's tricks :D ::

Useful Commands
 
Warning. Kernel may be alerted using higher levels
Kernel Info:

:: Preddy's tricks :D ::

Php Safe-Mode Bypass (Read Files)

File:

eg: /etc/passwd
Php Safe-Mode Bypass (List Directories):

Dir:

eg: /etc/

:: Search ::
  - regexp 
:: Upload ::
 
[ ok ]

:: Make Dir ::
 
[ ok ]
:: Make File ::
 
[ ok ]

:: Go Dir ::
 
:: Go File ::
 

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0147 ]--