User specific injection - A little harder now

Bypass the login form by logging in as the user "admin". The password will be hashed as before. The challenge now is to get the data you need without being able to ignore the password field.