Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- $username = $_GET["username"];
- $servername = "localhost";
- $sname = "root";
- $sword = "P@ssw0rd";
- $dbname = "contoso";
- $conn = new mysqli($servername, $sname, $sword, $dbname);
- if ($conn->connect_error) {
- die("Connection failed: " . $conn->connect_error);
- }
- $username = mysqli_real_escape_string($conn,$username);
- $password = mysqli_real_escape_string($conn,$password);
- $sql = "SELECT * FROM users WHERE username = '".$username."';";
- echo "Sql: $sql<br><br><br>";
- $result = $conn->query($sql);
- if ($result->num_rows >= 1) {
- while($row = $result->fetch_assoc()) {
- echo "username: " . $row["username"]. " - password: " . $row["password"]. "<br>";
- }
- } else {
- echo 'No result!';
- }
- $conn->close();
- echo "<h1><br><br>Please don't misuse the site! You will be caught!<br></h1>";
- ?>
Add Comment
Please, Sign In to add comment