3v4l.org

run code in 300+ PHP versions simultaneously
<?php $regex = '/(^a)(.*(?=ab))/'; $subject = "aaaaxyzaabaa"; // Comment/uncomment below as wanted. // All 3 functions are vulnerable (note, other functions are affected as well) preg_match_all($regex,$subject,$x); var_dump($x);
Output for 5.4.2 - 5.4.45, 5.5.24 - 5.5.35, 5.6.8 - 5.6.28, 7.0.0 - 7.0.20, 7.1.0 - 7.1.10, 7.2.0 - 7.2.33, 7.3.16 - 7.3.33, 7.4.0 - 7.4.33, 8.0.0 - 8.0.30, 8.1.0 - 8.1.28, 8.2.0 - 8.2.18, 8.3.0 - 8.3.6
array(3) { [0]=> array(1) { [0]=> string(8) "aaaaxyza" } [1]=> array(1) { [0]=> string(1) "a" } [2]=> array(1) { [0]=> string(7) "aaaxyza" } }
preferences:
179.48 ms | 404 KiB | 223 Q