This tweet mentions a CTF hacking challenge involving Dockerlabs and a WAF bypass on a machine called 'waffi'. The interest is specifically related to 'mysqli', which suggests the vulnerability is SQL Injection (SQLi). The tweet includes a writeup, but no specific bypass payload is provided in the tweet itself. The vendor or product name for the WAF is 'waffi'. The tweet suggests that the bypass technique or method was interesting and involved bypassing the WAF on the 'waffi' machine, which uses MySQLi for database interaction. Unfortunately, without the specific payload, we cannot describe the technical details of the bypass. To summarize, this is a SQL Injection vulnerability bypassing the 'waffi' WAF, particularly relevant to MySQLi usage, discussed in a hacking CTF context with Dockerlabs.
Original tweet: https://twitter.com/firstatack/status/1965550479766945903