WAF bypass by mohdnaveed14 The payload used in the tweet successfully bypassed the Cloudflare WAF, but the target treated the payload as a string. Furthe ... June 11, 2025
WAF bypass by IArVy0x A WAF bypass has been discovered for Akamai and Cloudflare. The payload used is <address onscrollsnapchange=window['ev ... June 10, 2025
WAF bypass by ammighorbani The tweet suggests that certain tags are unknown and unpopular in WAFs, making it possible to bypass the WAF or other filters. ... June 10, 2025
WAF bypass by cybersecGD Researchers discovered a new XSS bypass technique using the onscrollsnapchange event with obfuscated eval logic. This techniqu ... June 10, 2025
WAF bypass by UndercodeUpdate The tweet discusses XSS/SQLi filter bypass techniques using full-width Unicode characters. It is for educational purposes and ... June 9, 2025
WAF bypass by secur1ty1samyth The tweet mentions a tool that has features like dynamic wordlist fetch, multithreaded scan, and redirect/WAF bypass. The GitH ... June 9, 2025
WAF bypass by drpday A Web Application Firewall (WAF) is actively filtering out both single quotes (') and double quotes ("). This filter ... June 9, 2025
WAF bypass by neotrony A bypass for a WAF that checks for SQLi first but can be exploited for XSS. The payload 'meydi" or 1=/*</script&g ... June 9, 2025
WAF bypass by darkshadow2bd A payload was created to bypass IDS and execute Remote Code Execution (RCE) by utilizing hex decoding. The payload is < ... June 8, 2025
WAF bypass by YanC1eS3c The tweet mentions bypassing WAF using the payload 'eval'. This can be considered as a bypass for XSS vulnerabilitie ... June 8, 2025
WAF bypass by Komodosec The tweet highlights a vulnerability in React Router that exposes web apps to cache poisoning and WAF bypass attacks. This cou ... June 8, 2025
WAF bypass by BugBountyShorts The tweet discusses an innovative bypass technique for Web Application Firewalls (WAF) that enables attackers to exploit Refle ... June 7, 2025
WAF bypass by 40sp3l The tweet suggests that a SQL injection attempt was blocked by a Web Application Firewall (WAF). It highlights that the WAF ma ... June 6, 2025
WAF bypass by mamunwhh A new bypass technique for Cloudfront WAF has been discovered for XSS vulnerabilities. The payload used for bypassing is & ... June 4, 2025
WAF bypass by exploitdevs This tweet provides a step-by-step guide on bypassing a WAF for XSS attacks. The payload uses various techniques like string c ... June 4, 2025
WAF bypass by 0x0SojalSec Akamai WAF XSS Bypass discovered! Payload: <!--><svg+onload=%27top[%2fal%2f%2esource%2b%2fert%2f%2esource ... June 4, 2025
WAF bypass by i_am_mayor_ The tweet suggests bypassing a WAF (Web Application Firewall) instead of taking it down. The payload used for the bypass is &# ... June 4, 2025
WAF bypass by NullSecurityX The tweet mentions 6 modern techniques for WAF bypass related to XSS. These techniques include Context-Aware Encoding, Polyglo ... June 3, 2025
WAF bypass by 40sp3l This tweet highlights various techniques for bypassing Web Application Firewalls (WAF), including context-aware encoding, poly ... June 3, 2025
WAF bypass by NullSecurityX A visual showcasing advanced SQL injection (SQLi) WAF bypass payloads has been released. These payloads compile rare and evasi ... June 3, 2025
WAF bypass by wouldjazaiar The tweet mentions bypassing the WAF of Fortinet. It indicates a potential vulnerability in the Fortinet WAF. Would you like m ... June 2, 2025
WAF bypass by XssPayloads The tweet mentions a cheatsheet for bypassing WAF using Full-Width Symbols. This can be useful for bypassing different types o ... June 2, 2025
WAF bypass by therceman A tweet discussing a WAF bypass technique for XSS and CRLF vulnerabilities using a full-width version of symbols. This bypass ... June 1, 2025
WAF bypass by UndercodeUpdate The tweet discusses XSS WAF bypass techniques using Unicode and invisible character tricks for educational purposes. The techn ... June 1, 2025
WAF bypass by hetmehtaa A new XSS WAF bypass technique has been discovered that involves using invisible separators before or after a function name. T ... June 1, 2025