CloudFlare WAF Bypass – XSS

A new XSS bypass has been discovered for Cloudflare WAF. The payload used for the bypass is '><img src=x onerrora=confirm() onerror=confirm(1)>'. This vulnerability was credited to @kingcoolvikas. Security researchers can use this information for bug bounty programs and enhancing application security.

#bugbounty #bugbountytips #bugbountytip #appsec #owasp
For more details, check out the original tweet here: https://twitter.com/grumpzsux/status/1813157891383099754