Got an easy Cloudflare bypass with a simple XSS payload
“><img src=1 onmouseleave=print()>
Thought process:
1. WAF was checking event handler hence used onmouseleave (rarely used)
2. WAF blacklisted common dialog box hence used print()
Got an easy Cloudflare bypass with a simple XSS payload
“><img src=1 onmouseleave=print()>
Thought process:
1. WAF was checking event handler hence used onmouseleave (rarely used)
2. WAF blacklisted common dialog box hence used print()