This task was a very easy one: strcmp() bypass trick.

A login form is provided with username and password passed via POST method, using the strcmp() attack the request will look like this:

username=admin&password[]=a&submit=Login

treating password as an array will let us pass the login.

Razor4x