Hey! Tell me if I put a semicolon after the request (https : // example . com?id=10; IF(version() like ‘%5’, ‘false’ )#, and add some kind of expression (id=9;… id=11;…), and when I change this value, the page changes. Is there an SQL-injection here?
The page might be changing due to the change of ID. One cannot say that a website has SQL Injection with just this. You can try other methods of injecting your payload and see how the website behaves