A new XSS bypass payload has been discovered for FortiGate WAF. This payload exploits the open ontoggle attribute to trigger a malicious JavaScript alert. Web application firewall users should be cautious as this payload can bypass FortiGate WAF protections. It is recommended to update WAF configurations to mitigate this vulnerability.
For more insights, check out the original tweet here: https://twitter.com/HackingTeam777/status/1841808431621005765. And don’t forget to follow @HackingTeam777 for more exciting updates in the world of cybersecurity.