110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/mis2222/application/views/eregis/ drwxrwxrwx Free 50.65 GB of 127.8 GB (39.63%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686

uid=48(apache) gid=48(apache) groups=48(apache)

Safe-mode: OFF (not secure)

/var/www/html/mis2222/application/views/eregis/ drwxrwxrwx
Free 50.65 GB of 127.8 GB (39.63%)
Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout


<?php

$row_cur = (isset($qu_cur) && $qu_cur!=NULL) ? $qu_cur->row() : NULL;

?>

<table width="100%">

    <tr>

        <td><div align="center">

            <table align="center" width="100%" border="0" cellspacing="1" cellpadding="1">

                <tr>

                    <td align="center"><span class="h error">รายชื่อนักศึกษาตามหลักสูตร</span></td>

                </tr>

                <tr>

                    <td><br /></td>

                </tr>

                <tr>

                    <td><table width="100%">

                        <tr>

                            <td><b><?php echo "หลักสูตร : </b>".setValue('curName',$row_cur)." (ปีการศึกษา ".$adY.")";?>

                            <input type="hidden" name="curId" id="curId" value="<?php echo setValue('curId',$row_cur);?>">

                            <input type="hidden" name="adY" id="adY" value="<?php echo $adY;?>"></td>

                        </tr>

                    </table></td>

                </tr>

                <tr>

                    <td><table class="headCol">

                        <tr>

                            <th class="seqCol">ลำดับที่</th>

                            <th class="stdCodeCol">รหัสนักศึกษา</th>

                            <th>ชื่อ-สกุล</th>

                            <th>เจ้าของทุน</th>

                            <th class="editCol">แก้ไข</th>

                            <th class="deleteCol">ลบ</th>

                        </tr>

<?php

            $i = 0;

            if(isset($rs_std) && $rs_std->num_rows()) {

                foreach($rs_std->result() as $row) {

                        echo "<tr onmouseover=\"bgColor='".$tr_color_even."'\" onmouseout=\"bgColor='".$this->config->item("rg_mouseout")."'\">";

?>

                            <td align="center"><?php echo $i+1;?></td>

                            <td align="center"><?php if($row->stdGenStatus=='Y') echo $row->stdCode;?></td>

                            <td class="indent"><?php echo $row->prefixName.$row->stdName." ".$row->stdSurname;?></td>

<?php

                            if($row->stdSoId==1)

                                $soName = $row->soName;

                            else

                                $soName = $row->soName." จังหวัด".$row->provinceName; 

?>

                            <td class="indent"><?php echo $soName;?></td>

                            <td align="center">

<?php

                            /* สถานะเด็ก 

                                1     10     กำลังศึกษาอยู่

                                2     11     รักษาสภาพ

                                3     30     รออนุมัติจบ

                                4     40     สำเร็จการศึกษา

                                5     50     ลาออก

                                6     51     ไม่มารายงานตัว

                                7     60     พ้นสภาพคะแนนเฉลี่ยสะสมไม่ถึง

                                8     61     พ้นสภาพระยะเวลาเกินกำหนด

                                9     62     พ้นสภาพไม่ชำระเงิน

                                10     63     พ้นสภาพให้ออก

                                11     70     เสียชีวิต

                            */

                            

                            if($row->stdSstId==4 || $row->stdSstId==3 || $row->stdSstId==5 || $row->stdSstId==10 || $row->stdSstId==6 || $row->stdSstId==11) {

?>

                            -

<?php

                            } else {

?>

                            <img src="<?php echo base_url().$this->config->item('rg_edit');?>" align="absmiddle" border="0" width="23" height="19" class="hand"

                            onClick="sendPost('myform',

                            {'stdId':<?php echo $row->stdId;?>,

                             'adY':<?php echo $adY;?>,

                             'curId':<?php echo $curId;?>},

                             '<?php echo site_url($this->config->item('rg_folder').'student/std_editStdUpSst');?>')" />

<?php

                            }

?>

                            </td>

                            <td align="center">-</td>

                        </tr>

<?php        

                    $i++;

                }

            } else {

?>

                        <tr>

                            <td colspan="6" align="center"><span class="error">** ไม่ปรากฏข้อมูลในฐานข้อมูล **</span></td>

                        </tr>

<?php

            }

?>

                    </table></td>

                </tr>

                <tr>

                    <td align="right">รวม <?php echo $i;?> รายการ</td>

                </tr>

            </table></div>

        </td>

    </tr>

    <tr>

        <td><span class="error"><b>หมายเหตุ</b> : สามารถปรับปรุงสถานะนักศึกษาเฉพาะสถานะกำลังศึกษา และรักษาสภาพ</span></td>

    </tr>

</table>

:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:

:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/

:: Command execute ::
Enter:	Select: