blob: 6f5b517e8d889117609fefbe39f19d02f2b1dd14 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
|
--TEST--
Mysqli query with SQL comment (#) protection set to fail
--INI--
extension=mysqli.so
suhosin.sql.bailout_on_error=0
suhosin.sql.comment=2
suhosin.sql.opencomment=0
suhosin.sql.multiselect=0
suhosin.sql.union=0
suhosin.log.stdout=32
--SKIPIF--
<?php
include('skipifmysqli.inc');
include('skipif.inc');
?>
--FILE--
<?php
include('connect.inc');
$mysqli = connect_mysqli_oostyle();
$result = $mysqli->query("SELECT 1 # injection");
flush();
echo "mark.";
?>
--EXPECTREGEX--
ALERT - Comment in SQL query.*\)
|
