SQL Injection

The -- characters you entered caused the database to ignore the rest of the SQL statement, allowing you to be authenticated without having to supply the real password.

www.securebank.com

Welcome back, user@email.com!

Your current balance is $8,266

SECURE BANK

code
 SELECT *
  FROM users
 WHERE email    = ''
   AND password = ''

Application initialized.