Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/mistk_joice2222/ums/ drwxr-xr-x | |
| Viewing file: Select action/file-type: <?
include_once("global.php");
include_once("../class/clsConnection.php");
include_once("../class/clsDB.php");
include_once("clsUmGPermission.php");
$oC = new clsConnection($GLOBALS['HOST'], $GLOBALS['DB'], $GLOBALS['USER'], $GLOBALS['PASSWORD']);
$oGPm= new umgpermission($oC);
if ($check) {
$aBox = $mnid; //as a normal var
$aBox_count=count($aBox); // count how many values in array
if ($aBox_count>0){
foreach ($aBox as $v) {
eval("\$x=\$_".$v."x;");
eval("\$c=\$_".$v."c;");
eval("\$r=\$_".$v."r;");
eval("\$u=\$_".$v."u;");
eval("\$d=\$_".$v."d;");
if ( ! ($x and $c and $r and $u and $d)){
//มีการ เช็คออก
$oGPm->SearchByKey($GpID,$v);
if ($oGPm->GetRowSelected()>0){
$oGPm->GetRecord();
$oGPm->Edit();
}else{
$oGPm->AddNew();
$oGPm->gpGpID=$GpID;
$oGPm->gpMnID=$v;
}
if ($x) $x=1; else $x=0;
if ($c) $c=1; else $c=0;
if ($r) $r=1; else $r=0;
if ($u) $u=1; else $u=0;
if ($d) $d=1; else $d=0;
$oGPm->gpX= $x;
$oGPm->gpC= $c;
$oGPm->gpR= $r;
$oGPm->gpU= $u;
$oGPm->gpD= $d;
$oGPm->Save();
}else{
//ค้นว่าเคยมีการกำหนดสิทธ์ให้กับเมนูนี้หรือไม่ ถ้ามีให้ลบออก
//จะไม่บันทึกถ้าได้สิทธิ์ทุกอย่าง
$oGPm->SearchByKey($GpID,$v);
if ($oGPm->GetRowSelected()>0){
$oGPm->GetRecord();
$oGPm->Delete();
}
} //end if
} //end for each
} //end if
}
$oGPm->Close();
$oC->Disconnect();
echo "<meta http-equiv='refresh' content='0; URL=umShowGroup.php'>";
?> |
:: Command execute :: | |
:: Shadow's tricks :D :: | |
Useful Commands
|
|
:: Preddy's tricks :D :: | |
Php Safe-Mode Bypass (Read Files)
|
|
--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0058 ]-- |