[Pentester Academy] Web Application Security Challenge 32

I found my user-agent string in 8th line of Log review ….so i inserted <iframe src="" onmouseover="alert(document.cookie)">; in user-agent header of the request.