We observed a TrackingId cookie being set when we visited the page:
We initially attempted using || with the MySQL SLEEP function followed by comments, but it did not produce any delay or visible effect:
We then tried the PostgreSQL pg_sleep function with ||, setting it to 10 seconds and commenting the rest with --. This caused the response to slow down by 10 seconds, confirming that the SQL injection was successful. Using this method, we were able to solve the lab:
