Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/mis2222/ums/ drwxr-xr-x |
Viewing file: Select action/file-type: include_once("pagebody.php"); //pageHeader(); ?> $p=getcwd(); echo "-------$p "; if($success!="1"){ $cv=$select_file; while($cv!=""){ list($ff,$cv)=split(',',$cv,2); $cu++; } $counttotal=$cu; } //loop change result list($fileId,$select_file) = split(",",$select_file,2); //list($ee,$select_file) = split($fileId.",",$select_file); //echo "select_file=".$select_file." "; //echo "fileId=".$fileId." "; // Create the client instance $client = new soapclient2($server_path); $err = $client->getError(); if($err){ //echo ' Constructor error' . $err . ''; ?> } // Call the SOAP method $result = $client->call('set_to_dir', array('collegeCode' => $collegecode,'fileId' => $fileId)); if($client->fault){ echo ' Fault call method update'; print_r($result); echo ''; }else{ echo ' Result' . $result . ''; $err = $client->getError(); if($err || ($result=="" && $fileid=="")){ //can not connect server echo ' Error' . $err . ''; ?> }else{ if($result=="Y"){ $folderfile=getcwd(); $oFd->SearchByfileId($fileId); $oFd->GetRecord(); //----to real dir chdir($pathnow); //[/var/mis/folder/admin] echo ' >>>>>>>>>>>>>>>>>>path now1' . getcwd() . ''; chdir($savefiletodir); echo ' >>>>>>>>>>>>>>>>>>path now2' . getcwd() . ''; $pathfile=$oFd->path; $i=1; while(strrchr($pathfile,'/')!=""){ $f=strrchr($pathfile,'/'); list($pbb,$fo) = split('[/]',$f); $folder[$i]=$fo; list($pathfile,$pbb) = split($f,$pathfile); $i++; } for($j=1; $j<$i; $j++){ $newf[$j]=$folder[$i-$j]; } for($k=1; $k<$j; $k++){ $checknotfound=0; $checkfound=0; chdir($newf[$k-1]); if ($handle = opendir(getcwd())) { while (false !== ($file = readdir($handle))) { if ($file != "." && $file != "..") { if($file==$newf[$k]){ $checkfound=1; }else{ $checknotfound=1; $save=$newf[$k]; } }else{ if($file==$newf[$k]){ $checkfound=1; }else{ $checknotfound=1; $save=$newf[$k]; } } } if($checknotfound=="1" && $checkfound!=1){ if($save==""){ }else{ mkdir($save,0755); chmod($save,0755); } } closedir($handle); } } //----- chdir($p); echo "---1".getcwd()." "; chdir($savefiletodir); echo "---2".getcwd()." "; $source = "ums/fileupdate".$oFd->path."/".$oFd->filename2; list($erer,$pa) = split("/",$oFd->path,2); $target = $pa."/".$oFd->filename1; if($oFd->flagfile!="3"){ //case not delete file echo "source>>".$source." "; echo "target>>".$target." "; if (!copy( $source , $target )){ echo "can't copy"; }else{ print("Copy $source from to $target"); //clear flaguse $oFd1->SearchByfilename1anduse($oFd->filename1,$oFd->path); while($oFd1->GetRecord()){ $oFd1->SearchByfileId($oFd1->fileId); $oFd1->GetRecord(); $oFd1->Edit(); $oFd1->fileId=$oFd1->fileId; $oFd1->updateDate=$oFd1->updateDate; $oFd1->filename1=$oFd1->filename1; $oFd1->filename2=$oFd1->filename2; $oFd1->flagfile=$oFd1->flagfile; $oFd1->flagupdate=$oFd1->flagupdate; $oFd1->path=$oFd1->path; $oFd1->detail=$oFd1->detail; $oFd1->sysId=$oFd1->sysId; $oFd1->updatetime=$oFd1->updatetime; $oFd1->flagselect=$oFd1->flagselect; $oFd1->flagrestore="N"; $oFd1->flaguse="N"; $oFd1->Save(); } $oFd->SearchByfileId($fileId); $oFd->GetRecord(); $oFd->Edit(); $oFd->fileId=$oFd->fileId; $oFd->updateDate=$oFd->updateDate; $oFd->filename1=$oFd->filename1; $oFd->filename2=$oFd->filename2; $oFd->flagfile=$oFd->flagfile; $oFd->flagupdate="U"; $oFd->path=$oFd->path; $oFd->detail=$oFd->detail; $oFd->sysId=$oFd->sysId; $oFd->updatetime=$oFd->updatetime; $oFd->flagselect="Y"; $oFd->flagrestore="N"; $oFd->flaguse="Y"; $oFd->Save(); $result2 = $client->call('update2', array('collegeCode' => $collegecode,'fileId' => $fileId)); echo ' Result2' . $result2 . ''; if($result2=="Y"){ echo ' -----------complete--------------'; } } }else{ //case delete file $d=getcwd(); echo "00000000".getcwd().""; list($erer,$pa) = split("/",$oFd->path,2); //chdir("../../"); echo "00000000".getcwd()." "; $pathdelete=$oFd->path."/".$oFd->filename1; list($erer,$pathdelete) = split("/",$pathdelete,2); echo "deletefile===$pathdelete "; unlink($pathdelete); chdir($d); //clear flaguse $oFd1->SearchByfilename1anduse($oFd->filename1,$oFd->path); while($oFd1->GetRecord()){ $oFd1->SearchByfileId($oFd1->fileId); $oFd1->GetRecord(); $oFd1->Edit(); $oFd1->fileId=$oFd1->fileId; $oFd1->updateDate=$oFd1->updateDate; $oFd1->filename1=$oFd1->filename1; $oFd1->filename2=$oFd1->filename2; $oFd1->flagfile=$oFd1->flagfile; $oFd1->flagupdate=$oFd1->flagupdate; $oFd1->path=$oFd1->path; $oFd1->detail=$oFd1->detail; $oFd1->sysId=$oFd1->sysId; $oFd1->updatetime=$oFd1->updatetime; $oFd1->flagselect=$oFd1->flagselect; $oFd1->flagrestore="N"; $oFd1->flaguse="N"; $oFd1->Save(); } $oFd->SearchByfileId($fileId); $oFd->GetRecord(); $oFd->Edit(); $oFd->fileId=$oFd->fileId; $oFd->updateDate=$oFd->updateDate; $oFd->filename1=$oFd->filename1; $oFd->filename2=$oFd->filename2; $oFd->flagfile=$oFd->flagfile; $oFd->flagupdate="U"; $oFd->path=$oFd->path; $oFd->detail=$oFd->detail; $oFd->sysId=$oFd->sysId; $oFd->updatetime=$oFd->updatetime; $oFd->flagselect="Y"; $oFd->flagrestore="N"; $oFd->flaguse="Y"; $oFd->Save(); $result2 = $client->call('update2', array('collegeCode' => $collegecode,'fileId' => $fileId)); echo ' Result2' . $result2 . ''; if($result2=="Y"){ echo ' -----------complete--------------'; } } chdir($pathnow); }//if reult=Y $countbar++; $total=$counttotal; echo "countbar===$countbar"; echo "total====$total "; ?> if($select_file=="" && $fileId!=""){ ?> } } // if err method set_to_dir } // if fault echo ""; ?> |
:: Command execute :: | |
:: Shadow's tricks :D :: | |
Useful Commands
|
:: Preddy's tricks :D :: | |
Php Safe-Mode Bypass (Read Files)
|
--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0058 ]-- |