XSS: Arithmetic Operators and Optional Chaining to bypass input validation, sanitization, WAF, and HTML encoding https://t.co/QRA23uN5Gf #appsec #security #secops