connect_error) {
die("Database connection failed: " . $mysqli->connect_error);
}
// Function to sanitize input
function sanitizeInput($input) {
global $mysqli;
return $mysqli->real_escape_string($input);
}
// Default response
$response = "";
// Handle form submission
if ($_SERVER['REQUEST_METHOD'] === 'POST') {
$userInput = $_POST['user_input'];
// Example query for demonstration
$unsafeQuery = "SELECT * FROM users WHERE username = '$userInput'";
$safeQuery = "SELECT * FROM users WHERE username = '" . sanitizeInput($userInput) . "'";
// Detect SQL Injection
if (preg_match("/['\";#--]/", $userInput)) {
$response = "❌ Warning: Potential SQL Injection detected. Please sanitize your inputs!";
} else {
$response = "✅ Input is safe! Example query: SQL Injection Protection Tester
$safeQuery";
}
}
?>
SQL Injection Protection Tester
Enter an input to test for SQL Injection vulnerabilities. Learn how to secure your database queries.