!C99Shell v. 1.0 pre-release build #13!

Software: Apache. PHP/5.5.15 

uname -a: Windows NT SVR-DMZ 6.1 build 7600 (Windows Server 2008 R2 Enterprise Edition) i586 

SYSTEM 

Safe-mode: OFF (not secure)

E:\nuevo\phpMyAdmin2\libraries\   drwxrwxrwx
Free 1.22 GB of 239.26 GB (0.51%)
Detected drives: [ a ] [ c ] [ d ] [ e ] [ f ]
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     pmd_common.php (8.21 KB)      -rw-rw-rw-
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
<?php
/* vim: set expandtab sw=4 ts=4 sts=4: */
/**
 * Common functions for Designer
 *
 * @package PhpMyAdmin-Designer
 */
/**
 * Block attempts to directly run this script
 */
if (! defined('PHPMYADMIN')) {
    exit;
}

$GLOBALS['PMD']['STYLE']          = 'default';

$cfgRelation PMA_getRelationsParam();

/**
 * Retrieves table info and stores it in $GLOBALS['PMD']
 *
 * @return array with table info
 */
function PMA_getTablesInfo()
{
    
$retval = array();

    
$GLOBALS['PMD']['TABLE_NAME'] = array();// that foreach no error
    
$GLOBALS['PMD']['OWNER'] = array();
    
$GLOBALS['PMD']['TABLE_NAME_SMALL'] = array();

    
$tables $GLOBALS['dbi']->getTablesFull($GLOBALS['db']);
    
// seems to be needed later
    
$GLOBALS['dbi']->selectDb($GLOBALS['db']);
    
$i 0;
    foreach (
$tables as $one_table) {
        
$GLOBALS['PMD']['TABLE_NAME'][$i]
            = 
$GLOBALS['db'] . "." $one_table['TABLE_NAME'];
        
$GLOBALS['PMD']['OWNER'][$i] = $GLOBALS['db'];
        
$GLOBALS['PMD']['TABLE_NAME_SMALL'][$i] = $one_table['TABLE_NAME'];

        
$GLOBALS['PMD_URL']['TABLE_NAME'][$i]
            = 
urlencode($GLOBALS['db'] . "." $one_table['TABLE_NAME']);
        
$GLOBALS['PMD_URL']['OWNER'][$i] = urlencode($GLOBALS['db']);
        
$GLOBALS['PMD_URL']['TABLE_NAME_SMALL'][$i]
            = 
urlencode($one_table['TABLE_NAME']);

        
$GLOBALS['PMD_OUT']['TABLE_NAME'][$i] = htmlspecialchars(
            
$GLOBALS['db'] . "." $one_table['TABLE_NAME'], ENT_QUOTES
        
);
        
$GLOBALS['PMD_OUT']['OWNER'][$i] = htmlspecialchars(
            
$GLOBALS['db'], ENT_QUOTES
        
);
        
$GLOBALS['PMD_OUT']['TABLE_NAME_SMALL'][$i] = htmlspecialchars(
            
$one_table['TABLE_NAME'], ENT_QUOTES
        
);

        
$GLOBALS['PMD']['TABLE_TYPE'][$i] = strtoupper($one_table['ENGINE']);

        
$DF PMA_getDisplayField($GLOBALS['db'], $one_table['TABLE_NAME']);
        if (
$DF != '') {
            
$retval[$GLOBALS['PMD_URL']["TABLE_NAME_SMALL"][$i]] = urlencode($DF);
        }

        
$i++;
    }

    return 
$retval;
}

/**
 * Retrieves table column info
 *
 * @return array   table column nfo
 */
function PMA_getColumnsInfo()
{
    
$GLOBALS['dbi']->selectDb($GLOBALS['db']);
    
$tab_column = array();
    for (
$i 0$cnt count($GLOBALS['PMD']["TABLE_NAME"]); $i $cnt$i++) {
        
$fields_rs $GLOBALS['dbi']->query(
            
$GLOBALS['dbi']->getColumnsSql(
                
$GLOBALS['db'],
                
$GLOBALS['PMD']["TABLE_NAME_SMALL"][$i],
                
null,
                
true
            
),
            
null,
            
PMA_DatabaseInterface::QUERY_STORE
        
);
        
$tbl_name_i $GLOBALS['PMD']['TABLE_NAME'][$i];
        
$j 0;
        while (
$row $GLOBALS['dbi']->fetchAssoc($fields_rs)) {
            
$tab_column[$tbl_name_i]['COLUMN_ID'][$j]   = $j;
            
$tab_column[$tbl_name_i]['COLUMN_NAME'][$j] = $row['Field'];
            
$tab_column[$tbl_name_i]['TYPE'][$j]        = $row['Type'];
            
$tab_column[$tbl_name_i]['NULLABLE'][$j]    = $row['Null'];
            
$j++;
        }
    }
    return 
$tab_column;
}

/**
 * Returns JavaScript code for initializing vars
 *
 * @return string   JavaScript code
 */
function PMA_getScriptContr()
{
    
$GLOBALS['dbi']->selectDb($GLOBALS['db']);
    
$con = array();
    
$con["C_NAME"] = array();
    
$i 0;
    
$alltab_rs $GLOBALS['dbi']->query(
        
'SHOW TABLES FROM ' PMA_Util::backquote($GLOBALS['db']),
        
null,
        
PMA_DatabaseInterface::QUERY_STORE
    
);
    while (
$val = @$GLOBALS['dbi']->fetchRow($alltab_rs)) {
        
$row PMA_getForeigners($GLOBALS['db'], $val[0], '''internal');
        
//echo "<br> internal ".$GLOBALS['db']." - ".$val[0]." - ";
        //print_r($row);
        
if ($row !== false) {
            foreach (
$row as $field => $value) {
                
$con['C_NAME'][$i] = '';
                
$con['DTN'][$i]    = urlencode($GLOBALS['db'] . "." $val[0]);
                
$con['DCN'][$i]    = urlencode($field);
                
$con['STN'][$i]    = urlencode(
                    
$value['foreign_db'] . "." $value['foreign_table']
                );
                
$con['SCN'][$i]    = urlencode($value['foreign_field']);
                
$i++;
            }
        }
        
$row PMA_getForeigners($GLOBALS['db'], $val[0], '''foreign');
        
//echo "<br> INNO ";
        //print_r($row);
        
if ($row !== false) {
            foreach (
$row as $field => $value) {
                
$con['C_NAME'][$i] = '';
                
$con['DTN'][$i]    = urlencode($GLOBALS['db'] . "." $val[0]);
                
$con['DCN'][$i]    = urlencode($field);
                
$con['STN'][$i]    = urlencode(
                    
$value['foreign_db'] . "." $value['foreign_table']
                );
                
$con['SCN'][$i]    = urlencode($value['foreign_field']);
                
$i++;
            }
        }
    }

    
$ti 0;
    
$retval = array();
    for (
$i 0$cnt count($con["C_NAME"]); $i $cnt$i++) {
        
$c_name_i $con['C_NAME'][$i];
        
$dtn_i $con['DTN'][$i];
        
$retval[$ti] = array();
        
$retval[$ti][$c_name_i] = array();
        if (
in_array($dtn_i$GLOBALS['PMD_URL']["TABLE_NAME"])
            && 
in_array($con['STN'][$i], $GLOBALS['PMD_URL']["TABLE_NAME"])
        ) {
            
$retval[$ti][$c_name_i][$dtn_i] = array();
            
$retval[$ti][$c_name_i][$dtn_i][$con['DCN'][$i]] = array(
                
=> $con['STN'][$i],
                
=> $con['SCN'][$i]
            );
        }
        
$ti++;
    }
    return 
$retval;
}

/**
 * Returns UNIQUE and PRIMARY indices
 *
 * @return array unique or primary indices
 */
function PMA_getPKOrUniqueKeys()
{
    return 
PMA_getAllKeys(true);
}

/**
 * Returns all indices
 *
 * @param bool $unique_only whether to include only unique ones
 *
 * @return array indices
 */
function PMA_getAllKeys($unique_only false)
{
    include_once 
'./libraries/Index.class.php';

    
$keys = array();

    foreach (
$GLOBALS['PMD']['TABLE_NAME_SMALL'] as $I => $table) {
        
$schema $GLOBALS['PMD']['OWNER'][$I];
        
// for now, take into account only the first index segment
        
foreach (PMA_Index::getFromTable($table$schema) as $index) {
            if (
$unique_only && ! $index->isUnique()) {
                continue;
            }
            
$columns $index->getColumns();
            foreach (
$columns as $column_name => $dummy) {
                
$keys[$schema '.' $table '.' $column_name] = 1;
            }
        }
    }
    return 
$keys;
}

/**
 * Return script to create j_tab and h_tab arrays
 *
 * @return string
 */
function PMA_getScriptTabs()
{
    
$retval = array(
        
'j_tabs' => array(),
        
'h_tabs' => array()
    );

    for (
$i 0$cnt count($GLOBALS['PMD']['TABLE_NAME']); $i $cnt$i++) {
        
$j 0;
        if (
PMA_Util::isForeignKeySupported($GLOBALS['PMD']['TABLE_TYPE'][$i])) {
            
$j 1;
        }
        
$retval['j_tabs'][$GLOBALS['PMD_URL']['TABLE_NAME'][$i]] = $j;
        
$retval['h_tabs'][$GLOBALS['PMD_URL']['TABLE_NAME'][$i]] = 1;
    }
    return 
$retval;
}

/**
 * Returns table position
 *
 * @return array table positions and sizes
 */
function PMA_getTabPos()
{
    
$cfgRelation PMA_getRelationsParam();

    if (! 
$cfgRelation['designerwork']) {
        return 
null;
    }

    
$query "
         SELECT CONCAT_WS('.', `db_name`, `table_name`) AS `name`,
                `x` AS `X`,
                `y` AS `Y`,
                `v` AS `V`,
                `h` AS `H`
           FROM " 
PMA_Util::backquote($cfgRelation['db'])
        . 
"." PMA_Util::backquote($cfgRelation['designer_coords']);
    
$tab_pos $GLOBALS['dbi']->fetchResult(
        
$query,
        
'name',
        
null,
        
$GLOBALS['controllink'],
        
PMA_DatabaseInterface::QUERY_STORE
    
);
    return 
count($tab_pos) ? $tab_pos null;
}

/**
 * Prepares XML output for js/pmd/ajax.js to display a message
 *
 * @param string $b   b attribute value
 * @param string $ret Return attribute value
 *
 * @return void
 */
function PMA_returnUpd($b$ret)
{
    
// not sure where this was defined...
    
global $K;

    
header("Content-Type: text/xml; charset=utf-8");
    
header("Cache-Control: no-cache");
    die(
        
'<root act="relation_upd" return="' $ret '" b="'
        
$b '" K="' $K '"></root>'
    
);
}
?>

:: Command execute ::

Enter:
 
Select:
 

:: Search ::
  - regexp 

:: Upload ::
 
[ ok ]

:: Make Dir ::
 
[ ok ]
:: Make File ::
 
[ ok ]

:: Go Dir ::
 
:: Go File ::
 

--[ c99shell v. 1.0 pre-release build #13 powered by Captain Crunch Security Team | http://ccteam.ru | Generation time: 0.0156 ]--