Found an html injection in vdp program, <h1> <b> <i> are executed, <a> and <img> alone are executed but if I try <a href, <img src or <script> my resquest is blocked by the WAF (AkamaiGHost). What could be the reason and is it possible to bypass it ?#bugbountytips #bugbounty