I am trying to simulate an SQL injection on a VM Apache server. The query I send is being converted into the part of a parameter's value i.e an escape function is restricting me.
For example if I enter ' Or 1=1;--
it will include the single quote along with the rest and consider it a singular value, thus restricting me from implementing a successful injection.
The PHP version is Zend 2.3. SQLite DB.
Again this is an educational exercise. Only need a hint. Not the entire answer. Thanks in advance.