hackluck login

One of the best way to keep yourself safe from SQL injection is to use PreparedStatement instead of Statement. Save this answer. Show activity on this post. SELECT * FROM users WHERE login='admin' AND password='1' OR '1'='1'; so it will select rows where login column value is admin. It can be used to bypass the login. form login cms bank kalbar