<!DOCTYPE html><html><head></head><body><pre>
<?php
$input = "99 OR TRUE";
settype($input,"int");
echo $input."\n\n";
$input = "' OR TRUE --";
$link=mysqli_connect("localhost","root","passwd","testDB");
echo mysqli_real_escape_string($link,$input)."\n\n";
$size = "'
UNION
SELECT '1', CONCAT(uname,'-',passwd) AS NAME,
'2000-01-01', '0' FROM users -- ";
$size = str_replace("'","--SQ--",$size);
echo $size."\n\n";
$size = str_replace("--SQ--","'",$size);
echo $size;
?>
</pre></body></html>
<!DOCTYPE html><html><head></head><body><pre>
<?php
$input = "99 OR TRUE";
settype($input,"int");
echo $input."\n\n";
$input = "' OR TRUE --";
$link=mysqli_connect("localhost","root","passwd","testDB");
echo mysqli_real_escape_string($link,$input)."\n\n";
$size = "'
UNION
SELECT '1', CONCAT(uname,'-',passwd) AS NAME,
'2000-01-01', '0' FROM users -- ";
$size = str_replace("'","--SQ--",$size);
echo $size."\n\n";
$size = str_replace("--SQ--","'",$size);
echo $size;
?>
</pre></body></html>
99
\' OR TRUE --
--SQ--
UNION
SELECT --SQ--1--SQ--, CONCAT(uname,--SQ-----SQ--,passwd) AS NAME,
--SQ--2000-01-01--SQ--, --SQ--0--SQ-- FROM users --
'
UNION
SELECT '1', CONCAT(uname,'-',passwd) AS NAME,
'2000-01-01', '0' FROM users --