final_xmas_sqli

Task

• Which field is SQL injectable? Use the input name used in the HTML code. ```text

- What is Santa Claus' email address?
```text
bigman@shefesh.com

• What is Santa Claus’ plaintext password[redacted]

  [redacted sensitive answer]
  

• Santa has a secret! Which station is he meeting Mrs Mistletoe in?

  Waterloo
  

• Once you’re logged in to LapLANd, there’s a way you can gain a shell on the machine! Find a way to do so and read the file in /home/user/

  [redacted sensitive answer]