Finding entry points
Branch analysis from position: 0
2 jumps found. (Code = 43) Position 1 = 25, Position 2 = 29
Branch analysis from position: 25
1 jumps found. (Code = 79) Position 1 = -2
Branch analysis from position: 29
1 jumps found. (Code = 62) Position 1 = -2
filename: /in/ej673
function name: (null)
number of ops: 47
compiled vars: !0 = $txtUsername, !1 = $txtPassword1, !2 = $strSQL, !3 = $objQuery, !4 = $objResult, !5 = $username, !6 = $sql
line #* E I O op fetch ext return operands
-------------------------------------------------------------------------------------
1 0 E > INIT_FCALL 'session_start'
1 DO_ICALL
2 2 ECHO '%3C%21DOCTYPE+html%3E+%0A%3Chtml%3E%0A%3Chead%3E%0A%3Cmeta+charset%3D%22UTF-8%22%3E%0A%3Ctitle%3ECheck+Login%3C%2Ftitle%3E+%0A%0A%0A%3C%2Fhead%3E+%0A%3Cbody%3E+%0A%0A%0A%0A'
15 3 FETCH_R global ~8 '_POST'
4 FETCH_DIM_R ~9 ~8, 'txtUsername'
5 ASSIGN !0, ~9
16 6 FETCH_R global ~11 '_POST'
7 FETCH_DIM_R ~12 ~11, 'txtPassword1'
8 ASSIGN !1, ~12
17 9 INCLUDE_OR_EVAL 'connect.php', INCLUDE
18 10 CONCAT ~15 'SELECT+%2A+FROM+login+WHERE+username+%3D+%27', !0
11 CONCAT ~16 ~15, '%27+%0Aand+password+%3D+%27'
19 12 CONCAT ~17 ~16, !1
13 CONCAT ~18 ~17, '%27'
18 14 ASSIGN !2, ~18
20 15 INIT_FCALL_BY_NAME 'mysql_query'
16 SEND_VAR_EX !2
17 DO_FCALL 0 $20
18 ASSIGN !3, $20
21 19 INIT_FCALL_BY_NAME 'mysql_fetch_array'
20 SEND_VAR_EX !3
21 DO_FCALL 0 $22
22 ASSIGN !4, $22
22 23 BOOL_NOT ~24 !4
24 > JMPZ ~24, ->29
24 25 > ECHO '++++%3Cscript+type%3D%22text%2Fjavascript%22%3E%0A++++alert%28%22%E0%B8%81%E0%B8%A3%E0%B8%B8%E0%B8%93%E0%B8%B2%E0%B8%95%E0%B8%A3%E0%B8%A7%E0%B8%88%E0%B8%AA%E0%B8%AD%E0%B8%9A+Username+%E0%B9%81%E0%B8%A5%E0%B8%B0+Password%22%29%0A++++%3C%2Fscript%3E%0A%0A'
28 26 ECHO '%3CMETA+HTTP-EQUIV%3D%27Refresh%27+CONTENT%3D%270%3B+URL%3Dlogin.php%27%3E'
29 27 > EXIT
28* JMP ->43
33 29 > FETCH_R global ~25 '_POST'
30 FETCH_DIM_R ~26 ~25, 'txtUsername'
31 ASSIGN !5, ~26
34 32 ECHO '%3C%21--%3Cscript+type%3D%22text%2Fjavascript%22%3E%0A++++alert%28%22'
35 33 ECHO !5
34 ECHO '%22+%29%3B%0A%3C%2Fscript%3E--%3E%0A%0A++++'
39 35 FETCH_W global $28 '_SESSION'
36 ASSIGN_DIM $28, 'myValue'
37 OP_DATA !5
41 38 ROPE_INIT 3 ~31 'Select+%2A+from+login+where+username%3D%27'
39 ROPE_ADD 1 ~31 ~31, !5
40 ROPE_END 2 ~30 ~31, '%27+'
41 ASSIGN !6, ~30
42 42 ECHO '%3CMETA+HTTP-EQUIV%3D%27Refresh%27+CONTENT%3D%270%3B+URL%3Dmenu2.php%27%3E'
46 43 INIT_FCALL_BY_NAME 'mysql_close'
44 DO_FCALL 0
48 45 ECHO '%0A%3C%2Fbody%3E%0A%3C%2Fhtml%3E'
50 46 > RETURN 1
Generated using Vulcan Logic Dumper, using php 8.0.0