write up bypass WAF in sql injection via XML
enjoy ?
https://t.co/TH2U2n0nLA