3v4l.org

run code in 300+ PHP versions simultaneously
<?php $search = 'a\' UNION (SELECT 1, fname, username, password FROM users);--'; $keywords = ["SELECT", "FROM", "WHERE", "LIKE", "AND", "OR", "ON","UNION", "JOIN"]; $patterns = '/\b(' . implode('|', $keywords) . ')\b/i'; $query = 'SELECT * FROM shopping WHERE title LIKE \'%%%s%%\''; if (preg_match($patterns, $search)) { $query = preg_replace($patterns, '$1JERRY', $query); } printf($query, $search);
Output for 7.1.25 - 7.1.32, 7.2.0 - 7.2.33, 7.3.0 - 7.3.33, 7.4.0 - 7.4.33, 8.0.0 - 8.0.30, 8.1.0 - 8.1.33, 8.2.0 - 8.2.29, 8.3.0 - 8.3.25, 8.4.1 - 8.4.12
SELECTJERRY * FROMJERRY shopping WHEREJERRY title LIKEJERRY '%a' UNION (SELECT 1, fname, username, password FROM users);--%'
preferences:
139.14 ms | 408 KiB | 5 Q