- error_reporting: documentation ( source)
<?php
error_reporting(0);
if(@$_GET['password'] && intval(@$_GET['password'])===1){
$step1=FALSE;
$step2=FALSE;
$step3=FALSE;
include("flag.php");
$db = new SQLite3('access.db');
$result = $db->query('SELECT * FROM USERS WHERE password="'.$_GET['password'].'"');
if($result->fetchArray()) $step1=true;
$result = $db->query('SELECT * FROM USERS WHERE password=\''.$_GET['password'].'\'');
if($result->fetchArray()) $step2=true;
$result = $db->query('SELECT * FROM USERS WHERE password='.$_GET['password']);
if($result->fetchArray()) $step3=true;
if($step1 && $step1 && $step3) echo "<pre>".$flag."</pre>";
}
?>