A successful bypass of the Akamai WAF was achieved using an HTML injection payload for an account takeover. The reporter received a $250 bounty for reporting an unsuccessful bypass, while the tweeter earned $5,000 for the successful account takeover. This highlights the importance of continuously testing WAFs for vulnerabilities. Read more on the blog about this Akamai WAF bypass.
Someone reported an HTML injection after being unable to bypass the Akamai WAF and received a $250 bounty, while I earned $5,000 for successfully bypassing the WAF and achieving an account takeover.
This always happen lol
As long as WAFs exist, I'll be ahead?
— ??? (@bxmbn) January 14, 2025