3v4l.org

run code in 300+ PHP versions simultaneously
<?php // We didn't check $_POST['password'], it could be anything the user wanted! For example: $username = 'aidan'; $password = "' OR ''='"; // Query database to check if there are any matching users $query = "SELECT * FROM users WHERE user='$username' AND password='$password'"; // This means the query sent to MySQL would be: echo $query; ?>
Finding entry points
Branch analysis from position: 0
1 jumps found. (Code = 62) Position 1 = -2
filename:       /in/dvPti
function name:  (null)
number of ops:  10
compiled vars:  !0 = $username, !1 = $password, !2 = $query
line      #* E I O op                           fetch          ext  return  operands
-------------------------------------------------------------------------------------
    3     0  E >   ASSIGN                                                   !0, 'aidan'
    4     1        ASSIGN                                                   !1, '%27+OR+%27%27%3D%27'
    7     2        ROPE_INIT                                     5  ~6      'SELECT+%2A+FROM+users+WHERE+user%3D%27'
          3        ROPE_ADD                                      1  ~6      ~6, !0
          4        ROPE_ADD                                      2  ~6      ~6, '%27+AND+password%3D%27'
          5        ROPE_ADD                                      3  ~6      ~6, !1
          6        ROPE_END                                      4  ~5      ~6, '%27'
          7        ASSIGN                                                   !2, ~5
   10     8        ECHO                                                     !2
   11     9      > RETURN                                                   1

Generated using Vulcan Logic Dumper, using php 8.0.0

preferences:
164.7 ms | 1392 KiB | 13 Q