Warning: mysqli::__construct(): (28000/1045): Access denied for user 'whitesnake1004'@'localhost' (using password: YES) in /home/whitesnake1004/html/conn.php on line 5

Warning: mysqli::set_charset(): Couldn't fetch mysqli in /home/whitesnake1004/html/conn.php on line 6

---

Query : select * from simple_sql where id='' and pw=''

---

Warning: mysqli_query(): Couldn't fetch mysqli in /home/whitesnake1004/html/Simple_SQL.php on line 14

Warning: mysqli_fetch_array() expects parameter 1 to be mysqli_result, null given in /home/whitesnake1004/html/Simple_SQL.php on line 14

---

<?php
    include "./conn.php";

    $id = $_GET['id'];
    $pw = $_GET['pw'];
    
    if(preg_match('/[a-zA-Z0-9]/i', $id) || preg_match('/[a-zA-Z0-9]/i', $pw)) exit("빼애애ㅐ애애ㅐㅐ액!!!!");
    if(preg_match('/\||&| |0x|\t|admin|-|\'/i', $id) || preg_match('/\||&| |0x|\t|admin|-|\'/i', $pw)) exit("빼애애ㅐ애애ㅐㅐ액!!!!");

    $query = "select * from simple_sql where id='${id}' and pw='${pw}'";

    echo "<hr><b>Query : {$query}</b><hr><br>";

    $result = mysqli_fetch_array(mysqli_query($conn,$query));

    if($result){
        echo $flag;
        exit;
    }
    echo "<hr><br>";
    highlight_file(__FILE__);
?>