Heartbreaker-Denouement

I’m stuck on this question
What was the initial payload submitted by the threat actor to exploit weakness of the web server?

This suposed to be on access.log no?

it’s error.log

Anyone have any tips for Task 8 and 13? I can only see one account ID

Trace the IP and filter out the error message; you might end up resolving task 8.