I need a Basic 8 hint *SPOILERS*

I've used SQL alot and surprised that I still havn't gotten it.

Below is what I've been trying, could someone tell me if I have a flaw with syntax, spaces, or if it a key thing I'm not doing?

Hell' OR '1'='1'; /* Bound' OR username = 'Drake'; /* Hackers'; SELECT * FROM family_db WHERE username = 'Drake'; /*

PM me if you want

I would tottaly PM you but your inbox is full :/

I'm stuck too.

It's actually more than what it seems. Because the script adds everything I submit into the password field.

Ie: p' or 1=1– still comes as 'p' or 1=1–'

umm google for a SQL injection list…thats what i did got a bunch of different injection combinations and went down the list..i eventually found it

ahha wait sorry….lol wrong challenge…sorry about that

Hey if your still having trouble, you can PM me. Just remember… its a very simple SQL injection.

Oh, and good ol' ' or 1=1– Has nothing to do with it. Sorry to burst your bubble. Just use w3schools.com. The tutorial on SQL explains this nicely.

pm me

Go on my profile and then read basic 8 Tutorial should point you in the right direction, with out spelling the mission out to you.

Alright now im confused…

AND NO ITS NOT IN THE TEXT BOX ITS NOT EVEN ON THAT PAGE

URL ?

Using What_A_Legend's article and w3schools.com should make this challenge a piece of cake. Even so, the offer remains, you can PM me for any help you need.

PM for help.

More than welcome to PM me also…Or add my hotmail, always willing to help when I can.

I think I've almost got it, I read through a majority of the w3 schools tutorial and Legends tutorial, but I can't get any query to work, I always get 'wrong sql query'.

Tried SELECT commands, what am I doing wrong here?

Wrong SQL query is very vague. If I'm not mistaken, it says that to anything you put in thats wrong. That being said:

Just think… Why would you want to narrow down the parts of the table you want to see, when you could see the whole thing? And yes, the command you are using is part of it. You also need to find the name of the table that you are trying to see.

Hope that helps. And remember, I'm always open for PMs for more specific questions.