shell bypass 403

GrazzMean Shell

: /home/gutlooks/.trash/classess/ [ drwxr-xr-x ]
Uname: Linux server.thebazaar99.com 5.14.0-687.17.1.el9_8.x86_64 #1 SMP PREEMPT_DYNAMIC Mon Jun 22 07:21:26 EDT 2026 x86_64
Software: Apache
PHP version: 8.3.32 [ PHP INFO ] PHP os: Linux
Server Ip: 163.227.92.254
Your Ip: 216.73.217.24
User: gutlooks (1003) | Group: gutlooks (1005)
Safe Mode: OFF
Disable Function:
exec,passthru,shell_exec,system

name : sqlfunction.php
<?php

class sqlfunction{
 public $Nconn; 
 public $fields = '';
 public $values = '';
 function __construct(){
  $obj = new config;
  $this->Nconn = $obj->conn;
 }
 
 public function query($query){
    $stmt = $this->Nconn->prepare($query);
  $stmt->execute();
  return $stmt;
 }

 public function get_last_id($tabname){
  $stmt = $this->Nconn->prepare("select id from $tabname order by id desc limit 1");
  $stmt->execute();
  return $stmt;
 }

 public function count($feildname, $tab_name, $data){
  $stmt = $this->Nconn->prepare("select id from $tab_name where $feildname = '$data'");
  $stmt->execute();
  return $stmt; 
 }
 
 public function fetchdata($tab_name,$cnd){  
   if($cnd==""){
   $stmt = $this->Nconn->prepare("select * from $tab_name");
  } else { 
  $stmt = $this->Nconn->prepare("select * from $tab_name where $cnd");
   }
     $stmt->execute();
   return $stmt;
 }
 
 
  public function custom_query($query){  
  $stmt = $this->Nconn->prepare("$query");
  $stmt->execute();
  return $stmt;
 }
 
 
  public function fetchdata_game($tab_name,$cnd){  
   if($cnd==""){
   $stmt = $this->Nconn->prepare("select * from $tab_name");
  } else { 
  $stmt = $this->Nconn->prepare("select * from $tab_name $cnd");
   }
     $stmt->execute();
   return $stmt;
 }
 
 
 
 
  public function distinct_fetchdata($tab_name,$cnd){  
   if($cnd==""){
   $stmt = $this->Nconn->prepare("select * from $tab_name");
  } else { 
  $stmt = $this->Nconn->prepare("select distinct refer_id from $tab_name where $cnd");
   }
     $stmt->execute();
   return $stmt;
 }
 
 
   public function sum_fetchdata($tab_name,$cnd){  
   if($cnd==""){
   $stmt = $this->Nconn->prepare("select * from $tab_name");
  } else { 
   $stmt = $this->Nconn->prepare("select sum(amount) as amount , winning_amnt,status from $tab_name where $cnd");
   }
     $stmt->execute();
   return $stmt;
 }
 
 
 public function jantri_report($tab_name,$cnd){  
   if($cnd==""){
   $stmt = $this->Nconn->prepare("select * from $tab_name");
  } else { 
  $stmt = $this->Nconn->prepare("SELECT sum(amount) as amount FROM $tab_name where $cnd");
   }
     $stmt->execute();
   return $stmt;
 }
 public function andar_haruf($tab_name,$cnd){  
   if($cnd==""){
   $stmt = $this->Nconn->prepare("select * from $tab_name");
  } else { 
  $stmt = $this->Nconn->prepare("SELECT sum(amount) as amount FROM $tab_name where $cnd");
   }
     $stmt->execute();
   return $stmt;
 }


  public function fetchdataad($tab_name,$cnd){  
   if($cnd==""){
   $stmt = $this->Nconn->prepare("select * from $tab_name");
  } else { 
  $stmt = $this->Nconn->prepare("select * from $tab_name $cnd");
   }
     $stmt->execute();
   return $stmt;
 }
 
 public function selectdata($tab_name,$cnd){  
   if($cnd==""){
   $stmt = $this->Nconn->prepare("select * from $tab_name");
  } else { 
  $stmt = $this->Nconn->prepare("select * from $tab_name $cnd");
   }
     $stmt->execute();
   return $stmt;
 }
 
 public function update_data($tab_name,$values,$cnd){   
  $stmt = $this->Nconn->prepare("update $tab_name set $values where $cnd");
   $stmt->execute();
   return $stmt;
 }
  
 public function del_data($tab_name,$cnd){  
  $stmt = $this->Nconn->prepare("DELETE FROM $tab_name WHERE $cnd");
  $stmt->execute();
   return $stmt;
 }
 
 public function emptytable($tab_name){
  $stmt = $this->Nconn->prepare("TRUNCATE TABLE $tab_name");
  $stmt->execute();
   return $stmt;
 }
 
 public function ins_data($tab_name,$data){
  $this->fields = '';
  $this->values = '';
  foreach($data as $key => $val){
   $this->fields.=$key.',';
   $this->values.="'".$val."',";
   }
    $this->fields = substr($this->fields,0,strlen($this->fields)-1); 
     $this->values = substr($this->values,0,strlen($this->values)-1);
  
  $stmt = $this->Nconn->prepare("insert into $tab_name(".$this->fields.") values(".$this->values.")");
  $stmt->execute();
  return  $stmt;
 }
 
 public function updated($tab_name,$value,$cnd){
  $this->values = "";  
  foreach($value as $key => $val){
     $this->values.= $key."='".$val."',";     
   }   
  $this->values = substr($this->values,0,strlen($this->values)-1);
  $stmt = $this->Nconn->prepare("update $tab_name set ".$this->values." where $cnd");
   $stmt->execute();
   return $stmt;
 }

 public function last_id(){
  return $this->Nconn->lastInsertId();
 }


 public function run_sms_api($a,$b)
  {
    $ch = curl_init(); 
    $mobile = $a;
    $message = urlencode($b);
    
     $url = "http://xprtsms.com/app/smsapi/index.php?key=45B28F93DEB5BD&campaign=2965&routeid=100118&type=text&contacts=".$mobile."&senderid=SSMMSS&msg=".$message;
    curl_setopt($ch, CURLOPT_URL, $url);
    curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
    $result       = curl_exec($ch);
    return strlen($result);
  } 




}


?>
© 2026 GrazzMean