You must perform an XPath injection attack in a string field where pipes are filtered.
Your objective is to pull the user passwords from the XML document.
PARAMETERS:
Injection Type - String value in condition
Sanitization - No pipes
Output - All results, no errors, query not shown