Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/ws_standard_on_mis/ drwxr-xr-x |
Viewing file: Select action/file-type: <?php $information = '<?xml version="1.0" encoding="windows-874"?>'; $information .= "\n<Teachers_now>"; //teacher $information .= "\n<teachers>"; $dsn_name = "staff"; $username =""; $password =""; $connect= odbc_connect($dsn_name, $username, $password) or die("µÔ´µèÍ DSN äÁèä´é"); $sql = "SELECT *,TEmployee.id as tempid,TPrefix.name as prefixname FROM TEmployee,TWorkStatus,TPosScale,TPrefix WHERE (TEmployee.work_status=TWorkStatus.id) and (TEmployee.Id=TPosScale.TEmp_id) and (TEmployee.Prefix_id=TPrefix.id) and (TWorkStatus.id = '0') and (TEmployee.id like '01%') and (TPosScale.TDep_id = '0702')"; $execute = odbc_exec($connect, $sql) or die ("àÍç¡«Ô¤ÔÇÊì¤ÓÊÑè§äÁèä´é"); $i=1; $num1=0; while($row = odbc_fetch_array($execute)) { $num1++; $id=$row["tempid"]; $idx=$row["idx"]; $prefixname=$row["prefixname"]; $name=$row["fname"]; $surname=$row["lname"]; $information .= "\n<teacher>"; $information .= "\n<teacher_id>"; $information .= "$id"; $information .= "\n</teacher_id>"; $information .= "\n<person_id>"; $information .= "$idx"; $information .= "\n</person_id>"; $information .= "\n<teacher_prefixname>"; $information .= "$prefixname"; $information .= "\n</teacher_prefixname>"; $information .= "\n<teacher_fname>"; $information .= "$name"; $information .= "\n</teacher_fname>"; $information .= "\n<teacher_lname>"; $information .= "$surname"; $information .= "\n</teacher_lname>"; $information .= "\n</teacher>"; } // ¨º loop $information .= "\n</teachers>"; $information .= "\n<num_teachers>"; $information .= "$num1"; $information .= "\n</num_teachers>"; $information .= "\n</Teachers_now>"; echo "$information"; ?> |
:: Command execute :: | |
:: Shadow's tricks :D :: | |
Useful Commands
|
:: Preddy's tricks :D :: | |
Php Safe-Mode Bypass (Read Files)
|
--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0059 ]-- |