This lab's email change functionality is vulnerable to CSRF.
To solve the lab, craft some HTML that uses a CSRF attack to change the viewer's email address and upload it to your exploit server.
You can log in to your own account using the following credentials: wiener:peter
Durante el proceso de cambio de correo, vemos que se ejecuta el siguiente request:
El contenido del body es un formulario donde ,en caso la victima haga click, le cambiará automaticamente su correo a [email protected]
