Write-up author: jon-brandy
Can you escape the query context and log in as admin at my super secure login page?
- NONE
- First, open the host given.
RESULT
- Based from the
html
title, let's try to inject simple Sqli payload. - Input the username as
admin'--
and the password asadmin'--
.
RESULT
- Got the flag!
HTB{SQL_1nj3ct1ng_my_w4y_0utta_h3r3}