Hack This Site: Realistic Mission 2 - Chicago American Nazi Party

Click here: LEVEL 2

I remember that here I write SPOILERS!

I RECOMMEND to win the level alone, using also Google for Theory of arguments

Here, first thing to do is to go to source page.

We note that there is a file "update.php" that is hidden into homepage:

 We see it only if we mark it by cursor

Moreover, there is a second file "update2.php" that leads us to failed login page.

However, clicking on update.php, it reminds us to login page. 

In this way, we try to exploit by SQL Injection, typing into both Username and Password field the following:

' or 1=1--

===============> HTS: Realistic Mission 3