Abusing PHP query string parser to bypass IDS, IPS, and WAF https://t.co/EF4HBMcdUE