Warning: mysqli::__construct(): (28000/1045): Access denied for user 'whitesnake1004'@'localhost' (using password: YES) in /home/whitesnake1004/html/conn.php on line 5

Warning: mysqli::set_charset(): Couldn't fetch mysqli in /home/whitesnake1004/html/conn.php on line 6

Query : select * from simple_sql where id='' and pw=''

Warning: mysqli_query(): Couldn't fetch mysqli in /home/whitesnake1004/html/Simple_SQL.php on line 14

Warning: mysqli_fetch_array() expects parameter 1 to be mysqli_result, null given in /home/whitesnake1004/html/Simple_SQL.php on line 14


<?php
    
include "./conn.php";

    
$id $_GET['id'];
    
$pw $_GET['pw'];
    
    if(
preg_match('/[a-zA-Z0-9]/i'$id) || preg_match('/[a-zA-Z0-9]/i'$pw)) exit("빼애애ㅐ애애ㅐㅐ액!!!!");
    if(
preg_match('/\||&| |0x|\t|admin|-|\'/i'$id) || preg_match('/\||&| |0x|\t|admin|-|\'/i'$pw)) exit("빼애애ㅐ애애ㅐㅐ액!!!!");

    
$query "select * from simple_sql where id='${id}' and pw='${pw}'";

    echo 
"<hr><b>Query : {$query}</b><hr><br>";

    
$result mysqli_fetch_array(mysqli_query($conn,$query));

    if(
$result){
        echo 
$flag;
        exit;
    }
    echo 
"<hr><br>";
    
highlight_file(__FILE__);
?>