#start mysql services

sudo systemctl start mysql

#login to mysql

sudo mysql

#create the database and tables 

CREATE DATABASE sqldmeo;

use sqldemo;

CREATE TABLE users ( username varchar(255),

password varchar(255), 

age int,

PRIMARY KEY (username)

);

How the vulnerability happens ?

This usually happens when a developer accepts user input that gets directly included into an SQL query without being properly sanitized

when i make a query like SELECT age from users where username = "jeremy" union select passwords from users

now i want to get age and THE PASSWORDS from the table