@payloadartist Wowsers! ? Check out this awesome chain of postMessage, JSONP, WAF bypass, DOM-based XSS, CORS, and CSRF bugs. Learn more from @jub0bs and get the bounty with #bugbountytips #infosec #bugbounty. ?https://t.co/jcTmWHTJzb