Tags: sql web
TUCTF 2018: Colonel Mustard's Simple Signin
We know Col Mustard is up to something--can you find a way in to tell us what?
The website is just a login page. When trying inputs we notices that it is weak to SQL injection.
So we input `' or '1' = '1` in both the user and password textfield. (this SQL injection works in the password textfield)
We are redirected to the page with the flag: