The flag is: THMSQL_INJECTION.
Answer: users
users
The table name is users.
1. In-band SQLi (Union-based)
2. Error-based SQLi
3. Blind SQLi (Boolean & Time-based)
4. Authentication bypass
5. Retrieving data from users or similar tables