你的注入字符串应该是这样的:
用户名和密码:

Your injection string should be like this:
Username and password:

' or '1' = '1

用户名(通常)或密码:(这取决于查询中的第一个)
# 评论查询的其余部分.

Username (often) or password: (It depends on which one come first in the query)
# comments rest of the query.

' or '1'='1' #

有关 SQL 注入的更多信息，您可以查看这个完美的 url:
SQL注入知识库

For more information about SQL injection, you can check out this perfect url:
The SQL Injection Knowledge Base