A stored XSS vulnerability was found on a private bug bounty program on HackerOne. The bypass payload used was '<Img Src=OnXSS OnError=confirm("Hacked_by_a7madn1")>'. This bypass affected a generic WAF. For more details, read the write-up at the provided link. #bugbountytips #xss #Hacked
For more insights, check out the original tweet here: https://twitter.com/Bensonhackz7/status/1910595956510249367