This is a level 2 challenge on picoCTF. This is a web exploitation challenge, SQL injection to be specific you can read about SQL injection here this is pretty simple though.

sql

as the challenge says we have to inject some SQL through the webpage to get the flag. I gave pico’ or ”=’ in both username and password and got the flag. Good Luck getting the flag.

 

Advertisements