!C99Shell v. 1.0 pre-release build #16!

Software: Apache/2.0.54 (Fedora). PHP/5.0.4 

uname -a: Linux mina-info.me 2.6.17-1.2142_FC4smp #1 SMP Tue Jul 11 22:57:02 EDT 2006 i686 

uid=48(apache) gid=48(apache) groups=48(apache)
context=system_u:system_r:httpd_sys_script_t 

Safe-mode: OFF (not secure)

/home/mnnews/public_html/phpads/   drwxr-xr-x
Free 4.04 GB of 27.03 GB (14.95%)
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     adimage.php (2.44 KB)      -rwxr-xr-x
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
<?php // $Revision: 1.3 $

/************************************************************************/
/* phpAdsNew 2                                                          */
/* ===========                                                          */
/*                                                                      */
/* Copyright (c) 2001 by the phpAdsNew developers                       */
/* http://sourceforge.net/projects/phpadsnew                            */
/*                                                                      */
/* This program is free software. You can redistribute it and/or modify */
/* it under the terms of the GNU General Public License as published by */
/* the Free Software Foundation; either version 2 of the License.       */
/************************************************************************/



// Include required files
require    ("config.inc.php");
require ("lib-db.inc.php");


// Set header information
//include ("lib-cache.inc.php");

// Open a connection to the database
phpAds_dbConnect();


if (isset($filename) && $filename != '')
{
    $res = phpAds_dbQuery("
        SELECT
            contents
        FROM
            ".$phpAds_config['tbl_images']."
        WHERE
            filename = '".$filename."'
        ");
    
    if (phpAds_dbNumRows($res) == 0)
    {
        // Filename not found, show default banner
        if ($phpAds_config['default_banner_url'] != "")
        {
            Header("Location: ".$phpAds_config['default_banner_url']);
        }
    }
    else
    {
        // Filename found, dump contents to browser
        $row = phpAds_dbFetchArray($res);
        
        if (isset($contenttype) && $contenttype != '')
        {
            switch ($contenttype)
            {
                case 'swf': Header('Content-type: application/x-shockwave-flash; name='.md5(microtime()).'.'.$contenttype); break;
                case 'dcr': Header('Content-type: application/x-director; name='.md5(microtime()).'.'.$contenttype); break;
                case 'rpm': Header('Content-type: audio/x-pn-realaudio-plugin; name='.md5(microtime()).'.'.$contenttype); break;
                case 'mov': Header('Content-type: video/quicktime; name='.md5(microtime()).'.'.$contenttype); break;
                default:    Header('Content-type: image/'.$contenttype.'; name='.md5(microtime()).'.'.$contenttype); break;
            }
        }
        
        echo $row['contents'];
    }
}
else
{
    // Filename not specified, show default banner
    
    if ($phpAds_config['default_banner_url'] != "")
    {
        Header("Location: ".$phpAds_config['default_banner_url']);
    }
}

phpAds_dbClose();

?>

:: Command execute ::

Enter:
 
Select:
 

:: Search ::
  - regexp 
:: Upload ::
 
[ Read-Only ]

:: Make Dir ::
 
[ Read-Only ]
:: Make File ::
 
[ Read-Only ]

:: Go Dir ::
 
:: Go File ::
 

--[ c99shell v. 1.0 pre-release build #16 powered by Captain Crunch Security Team | http://ccteam.ru | Generation time: 0.0038 ]--