Finding details
SQL Queries
(Interesting) SQL query and a user controlled variable are concaternated. That does not sound good but is no direct indication of a vulnerability as the variable could be filtered or checked.In app.php line 8:
"SELECT * FROM users WHERE username = '" . ◈$_POST[ "username" ] . "' AND password = '" . ◈$_POST[ "password" ] . "'";