orderorder_picoCTF 2026 | video walkthrough | SQL injection

This is a video walk-through of the recent completed international competition. Pico CTF 2026. In this challenge, we exploit the second order SQL injection vulnerability, where the payload is stored in the application and only executed when an action is done, in this case the generation of the report. challenge link: https://play.picoctf.org/practice/challenge/752?category=1&originalEvent=79&page=1 #picoctf2026 #oderoder #ctf #cybersecurity