Which of the following fragments of input might indicate an LDAP injection attack attempt?
1) SELECT * FROM users WHERE username = 'admin' AND password = 'password'
2) SELECT * FROM users WHERE username = 'admin' OR 1=1 --'
3) SELECT * FROM users WHERE username = 'admin' UNION SELECT NULL, password FROM users --'
4) SELECT * FROM users WHERE username = 'admin' AND password = 'password' OR '1'='1'
5) SELECT * FROM users WHERE username = 'admin' AND password = 'password' OR 1=1; DROP TABLE users; --'
