A bypass for AWS WAF has been discovered for SQL injection vulnerability. The payload used is '%27 OR 1=1–'. This allows an attacker to bypass the AWS WAF protection and execute SQL injection attacks. For more technical details, check out the blogpost.
For more insights, check out the original tweet here: https://twitter.com/Nutritionist_AP/status/1773739394324677105. And don’t forget to follow @Nutritionist_AP for more exciting updates in the world of cybersecurity.