!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6 

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686 

uid=48(apache) gid=48(apache) groups=48(apache) 

Safe-mode: OFF (not secure)

/var/www/html/mistk/eoffice/admin/   drwxr-xr-x
Free 50.92 GB of 127.8 GB (39.84%)
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     setInbox.php (3.81 KB)      -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
<?php
include_once "template.php";
include_once "../class/clsTable.php";
include_once "../class/clsDepartment.php";
include_once "../class/clsPerson.php";
include_once "../link/function.php";
include_once "../class/clsDocLinePosition.php";
include_once "../class/clsDocLineConfig.php";
include_once "../class/clsReceiveSendType.php";
include_once "../class/clsDocType.php";
include_once "../link/functionshow.php";
include_once "../class/clsDocattatchesTmp.php";
include_once "../class/clsDocuments.php";
include_once "../class/clsDocSpeedLevel.php";
include_once "../class/clsDocSecreLevel.php";
include_once "../class/clsDocReceiveSend.php";
include_once "../class/clsDocInbox.php";
include_once "funct.php";
$oC = new clsConnection($GLOBALS['DBHOST'], $GLOBALS['DBNAME_EOFFICE'], $GLOBALS['DBUSER_EOFFICE'], $GLOBALS['DBPASS_EOFFICE']);

$oDP = new Department($oC);
$oDP2 = new Department($oC);
$oDP3 = new Department($oC);
$oPS = new person($oC);
$oDlc = new DocLineConfig($oC);
$oDlc2 = new DocLineConfig($oC);
$oDlp = new docLinePosition($oC);
$oRSt = new receiveSendType($oC);
$oDt = new doctype($oC);
$oDtmp = new DocattatchesTmp($oC);
$oDoc = new Documents($oC);
$oDoc1 = new Documents($oC);
$oDoc2 = new Documents($oC);
$oDoc2 = new Documents($oC);
$oDoc3 = new Documents($oC);
$oDsl = new DocSpeedLevel($oC);
$oDcl = new DocSecretLevel($oC);
$oDsl2 = new DocSpeedLevel($oC);
$oDcl2 = new DocSecretLevel($oC);
$oRs = new DocReceiveSend($oC);
$oRs1 = new DocReceiveSend($oC);
$oRs2 = new DocReceiveSend($oC);
$oRs3 = new DocReceiveSend($oC);
$oRs4 = new DocReceiveSend($oC);
$oRs5 = new DocReceiveSend($oC);
$oRs6 = new DocReceiveSend($oC);
$oDbx = new DocInbox($oC);
$MaxDocGroup=$oDP->SearchMaxDocGroup();

$personId=$oU->userPsCode;

 $oPS->RSperson2();
 while($oPS->GetRecord()){
 /*
        $oDbx->AddNew();
        $oDbx->DocInboxID=$oDbx->GetNextCode();
        echo "DocInboxID".$oDbx->DocInboxID."<br>";
        $oDbx->personId=$oPS->personId;
        echo "personId".$oDbx->personId."<br>";
        $oDbx->InboxName="˹ѧÊ×ÍÍèÒ¹áÅéÇ";
        $oDbx->InboxDel=$oDbx->InboxDel;
        $oDbx->Save();
*/
        
        $oDbx->SearchBypersonIdInboxName($oPS->personId,"˹ѧÊ×ÍÍèÒ¹áÅéÇ");
        $oDbx->GetRecord();
         $oRs->updateinbox($oPS->personId,1);
         while($oRs->GetRecord()){
                     echo "personId=".$oRs->personId."<br>";
                    //echo "DrsID=".$oRs->DrsID."<br>";
                    //echo "DsID=".$oRs->DsID."<br>";
                    //echo "DrsflagRead=".$oRs->DrsflagRead."<br>";
                    $oRs->Edit();
                    $oRs->DrsID=$oRs->DrsID;
                    $oRs->DocID=$oRs->DocID;
                    $oRs->DlcID=$oRs->DlcID;
                    $oRs->DsID=$oRs->DsID;
                    $oRs->personId=$oRs->personId;
                    $oRs->PtID=$oRs->PtID;
                    $oRs->DrsDocTypeNo=$oRs->DrsDocTypeNo;
                    $oRs->DrsReceiveDate=$oRs->DrsReceiveDate;
                    $oRs->DrsReceivePersonId=$oRs->DrsReceivePersonId;
                    $oRs->DrsSendDate=$oRs->DrsSendDate;
                    $oRs->DrsSendPersonId=$oRs->DrsSendPersonId;
                    $oRs->DrsSendDlcID=$oRs->DrsSendDlcID;
                    $oRs->DrsDocDueDate=$oRs->DrsDocDueDate;
                    $oRs->DrsDlcIDCreate=$oRs->DrsDlcIDCreate;
                    $oRs->DrsPsIDCreate=$oRs->DrsPsIDCreate;
                    $oRs->DrsPropose=$oRs->DrsPropose;
                    $oRs->DrsSign=$oRs->DrsSign;
                    $oRs->DrsFromDrsID=$oRs->DrsFromDrsID;
                    $oRs->DocGroup=$oRs->DocGroup;
                    $oRs->DrsflagRead=$oRs->DrsflagRead;
                    $oRs->DrsByPass=$oRs->DrsByPass;
                    $oRs->DrsSend=$oRs->DrsSend;
                    $oRs->DrsSendToPs=$oRs->DrsSendToPs;
                    $oRs->DrsDelete=$oRs->DrsDelete;
                    $oRs->DrsMainPs=$oRs->DrsMainPs;
                    $oRs->AnID=$oRs->AnID;
                    $oRs->DrsDocReceiveDate=$oRs->DrsDocReceiveDate;
                    $oRs->DocRefAnsDate=$oRs->DocRefAnsDate;
                    $oRs->DrsSendDocNew=$oRs->DrsSendDocNew;
                    $oRs->DrsInboxID=$oDbx->DocInboxID;
                    $oRs->DrsstartDatePost=$oRs->DrsstartDatePost;
                    $oRs->DrsendDatePost=$oRs->DrsendDatePost;
                    echo "DrsInboxID=".$oRs->DrsInboxID."<br>";
                    echo "end Doc<br>";
                    $oRs->Save();
         }
        
         echo "-------------------------end ps<br>";
 }

 

?>

:: Command execute ::

Enter:
 
Select:
 

:: Shadow's tricks :D ::

Useful Commands
 
Warning. Kernel may be alerted using higher levels
Kernel Info:

:: Preddy's tricks :D ::

Php Safe-Mode Bypass (Read Files)

File:

eg: /etc/passwd
Php Safe-Mode Bypass (List Directories):

Dir:

eg: /etc/

:: Search ::
  - regexp 
:: Upload ::
 
[ ok ]

:: Make Dir ::
 
[ ok ]
:: Make File ::
 
[ ok ]

:: Go Dir ::
 
:: Go File ::
 

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0072 ]--