Dante Pro Lab

I have found only the initial flag of Dante Pro lab & now I am stuck. I don’t know what to do now. For the 2nd flag, I tried wp_scan in which there were a total of 48 vulnerabilities out of which one was listed as ‘SQL Injection via WP_Query’. And this is where I am stuck now. Can anyone help me here?