Try SQL Injection: Enter one of these payloads in the username field:
' OR '1'='1' --
admin'--
' UNION SELECT * FROM users --
1'; DROP TABLE users; --
The WAF will detect and block these malicious inputs!
Sign In
Valid test credentials:
Username:
Username:
Username:
demo / Password: demo123Username:
admin / Password: admin123