pastebin

Paste Search Dynamic
Recent pastes
query
  1. <?php
  2. // Validate SQL strings, look here for reference:
  3. //https://dev.mysql.com/doc/refman/5.0/en/string-functions.html
  4. function escape_input($input) {
  5. return str_replace("'", "''", $input);
  6. }
  7. $query = "SELECT user_id,usergroup FROM abc"."users WHERE username='" . escape_input("text' or 1=1'--") ;
  8.  
  9. echo $query
  10. ?>
Parsed in 0.007 seconds