Hello dear friends, I am trying to do csrf laboratory number 3 http//3.csrf.labs although the script to try to use the session works, I would not be able to do it with my user, something understandable but how do I get the Gallegos user? I do not have credentials, the XSS in Gallegos feedback does not execute it, and when I want to enter hacker.site via ssh I cannot enter with the credentials provided.

This is definitely a big problem with this lab. I contacted support about this without any clear response. When you are practicing this labs, and something that should work doesn’t, it takes away any confidence that you might have.

Can someone please fix this lab?!