PHPize Online / SQLize Online  /  SQLtest Online

A A A
Share      Blog   Popular
Copy Format Clear
CREATE TABLE user_value (`user_name` varchar(4), `user_pass` varchar(3)) ; select * from user_value; select * from user_value WHERE user_name='admin_email\' AND (SELECT CASE WHEN (SUBSTRING(admin_pass,1,1) = \'a\') THEN SLEEP(5) ELSE 1 END) AND \'1\' = \'1' AND user_pass='pass\' --'
Copy Clear
Copy Format Clear
<?php $q = mysqli_prepare( $mysqli, "INSERT INTO `user_value` (`user_name`, `user_pass`) VALUES (?, ?)" ); $q->bind_param("ss", $user_names, $user_pass); $q->execute(); $email=mysqli_real_escape_string($mysqli,"admin_email\' AND (SELECT CASE WHEN (SUBSTRING(admin_pass,1,1) = \'a\') THEN SLEEP(5) ELSE 1 END) AND \'1\' = \'1"); $pass=mysqli_real_escape_string($mysqli,"pass' --"); $r="select * from admins WHERE admin_email='".$email."' AND admin_pass='".$pass."'"; echo $r;
Show:  
Copy Clear
Like the site? Share it!
Have a questions? Ask in our telegram chat!
© 2024 PHPize - format run and share PHP code with SQL queries online | About project | Disclaimer
PHP versions: PHP 5.6, PHP 7.4, PHP 8.0, PHP 8.1, PHP 8.2.13
RDBMS versions: MySQL 5.7, MySQL 5.7 Sakila (ReadOnly), MySQL 8.0, MySQL 8.0 Sakila (ReadOnly), MariaDB 10, MariaDB 10 Sakila (ReadOnly), SQLite 3, PostgreSQL 10 Bookings (ReadOnly), PostgreSQL 11, PostgreSQL 12, PostgreSQL 13, PostgreSQL 14, PostgreSQL 15, MS SQL Server 2017, MS SQL Server 2019, MS SQL Server 2022, MS SQL Server 2022 AdventureWorks (ReadOnly), Firebird 4.0, Firebird 4.0 (Employee), Oracle Database 19c (HR), Oracle Database 21c, Oracle Database 23c Free, SOQOL