MySQL Backend

This PHP application is vulnerable to SQL Injection on the id querystring parameter
Click here to start with an example payload

Executed Query:
SELECT username FROM users WHERE id=(1+1)

Results:
Username: pizza