i feel like i’m overthinking this. Got past login, thinking similar method would apply to getting secret data or the flag, as well as tried some other stuff like cdinj****ion with no love. Anyone willing to DM me a nudge in the right direction? I know what was vuln for the login, looks like it should apply again to the search page, but IDK.