cukup membuat mumet... karna mesin pada lab tidak bisa di luncurkan brooooo.....

A lot of people overthink it just remember were and not to put the keywords

A lot of people overthink it just remember were and not to put the keywords

A lot of people overthink it just remember were and not to put the keywords

A lot of people overthink it just remember were and not to put the keywords

A lot of people overthink it just remember were and not to put the keywords

A lot of people overthink it just remember were and not to put the keywords

A lot of people overthink it just remember were and not to put the keywords

A lot of people overthink it just remember were and not to put the keywords

Why ' or 1=1 -- not work?

spoiler alert

I would also want to know why ' OR 1 = 1; -- statement does not work, but ' OR '1' = '1 is working. This ' OR '1' = '1 is mentioned in The Lab. I think reading Wikipedia SQL injection will help me to understand it. Also I like that comments supports markdown :)

You forgot to include the semicolon - it should read: ' OR 1 = 1; --. Also, keep in mind that in MySQL, comments must include a space after the double dash. See the "Comments" section in: https://portswigger.net/web-security/sql-injection/cheat-sheet

i couldn't solve it because im clueless in web, but i know Luke made that problem

Almost there :)

You're not "almost there" how is one supposed to have a single clue on how to "sanitize" it?

Sounds like you got the flag, you just need to submit it!

he was trolling you

can we share how we solve it or will it count as a spoiler. Or give hint to the user that have problem solving it.

did you get it

How is this easy? I literally have no clue what to do i looked up SQL injection and I have no clue where I'm supposed to put the true statement this makes no sense

Hey Carter. We will soon have better ways for people to learn on this site, hang in there!

SQL Injection Lab

for me i got "unable to lunch lab"