!C99Shell v. 1.0 pre-release build #13!

Software: Apache. PHP/5.5.15 

uname -a: Windows NT SVR-DMZ 6.1 build 7600 (Windows Server 2008 R2 Enterprise Edition) i586 

SYSTEM 

Safe-mode: OFF (not secure)

C:\dmz\phpMyAdmin\   drwxrwxrwx
Free 4.09 GB of 39.52 GB (10.35%)
Detected drives: [ a ] [ c ] [ d ] [ e ] [ f ]
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     tbl_export.php (2.81 KB)      -rw-rw-rw-
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
<?php
/* vim: set expandtab sw=4 ts=4 sts=4: */
/**
 * Table export
 *
 * @package PhpMyAdmin
 */

/**
 *
 */
require_once 'libraries/common.inc.php';

$response PMA_Response::getInstance();
$header   $response->getHeader();
$scripts  $header->getScripts();
$scripts->addFile('export.js');

/**
 * Gets tables informations and displays top links
 */
require_once 'libraries/tbl_common.inc.php';
$url_query .= '&amp;goto=tbl_export.php&amp;back=tbl_export.php';
require_once 
'libraries/tbl_info.inc.php';

// Dump of a table

$export_page_title __('View dump (schema) of table');

// When we have some query, we need to remove LIMIT from that and possibly
// generate WHERE clause (if we are asked to export specific rows)

if (! empty($sql_query)) {
    
// Parse query so we can work with tokens
    
$parsed_sql PMA_SQP_parse($sql_query);
    
$analyzed_sql PMA_SQP_analyze($parsed_sql);

    
// Need to generate WHERE clause?
    
if (isset($where_clause)) {

        
// Regular expressions which can appear in sql query,
        // before the sql segment which remains as it is.
        
$regex_array = array(
            
'/\bwhere\b/i''/\bgroup by\b/i''/\bhaving\b/i''/\border by\b/i'
        
);

        
$first_occurring_regex PMA_Util::getFirstOccurringRegularExpression(
            
$regex_array$sql_query
        
);
        unset(
$regex_array);

        
// The part "SELECT `id`, `name` FROM `customers`"
        // is not modified by the next code segment, when exporting
        // the result set from a query such as
        // "SELECT `id`, `name` FROM `customers` WHERE id NOT IN
        //  ( SELECT id FROM companies WHERE name LIKE '%u%')"
        
if (! is_null($first_occurring_regex)) {
            
$temp_sql_array preg_split($first_occurring_regex$sql_query);
            
$sql_query $temp_sql_array[0];
        }
        unset(
$first_occurring_regex$temp_sql_array);

        
// Append the where clause using the primary key of each row
        
if (is_array($where_clause) && (count($where_clause) > 0)) {
            
$sql_query .= ' WHERE (' implode(') OR ('$where_clause) . ')';
        }

        if (!empty(
$analyzed_sql[0]['group_by_clause'])) {
            
$sql_query .= ' GROUP BY ' $analyzed_sql[0]['group_by_clause'];
        }
        if (!empty(
$analyzed_sql[0]['having_clause'])) {
            
$sql_query .= ' HAVING ' $analyzed_sql[0]['having_clause'];
        }
        if (!empty(
$analyzed_sql[0]['order_by_clause'])) {
            
$sql_query .= ' ORDER BY ' $analyzed_sql[0]['order_by_clause'];
        }
    } else {
        
// Just crop LIMIT clause
        
$sql_query $analyzed_sql[0]['section_before_limit']
            . 
$analyzed_sql[0]['section_after_limit'];
    }
    echo 
PMA_Util::getMessage(PMA_Message::success());
}

$export_type 'table';
require_once 
'libraries/display_export.inc.php';
?>

:: Command execute ::

Enter:
 
Select:
 

:: Search ::
  - regexp 

:: Upload ::
 
[ ok ]

:: Make Dir ::
 
[ ok ]
:: Make File ::
 
[ ok ]

:: Go Dir ::
 
:: Go File ::
 

--[ c99shell v. 1.0 pre-release build #13 powered by Captain Crunch Security Team | http://ccteam.ru | Generation time: 0.0312 ]--