After bypassing login, you are logged in as admin but see no flag. The flag is stored in another table (e.g., flags ). To retrieve it, you must inject a SELECT without using the word SELECT .
Would you like this formatted as a challenge page (HTML) or a printable PDF? Sql Injection Challenge 5 Security Shepherd
To do this without output, you must ask the database a series of binary questions using SQL functions. After bypassing login, you are logged in as