A WAF on a website may block SQL injection attempts by preventing the injection of quotes and typical payloads. However, with some clever manipulations, it is possible to bypass the WAF's restrictions. This shows the importance of thorough testing and constant security updates to protect against potential SQL injection vulnerabilities.
Original tweet: https://twitter.com/Mr_Dark55/status/1791372650075353155