WAF bypass by WllGates

Date: August 5, 2024Author: wafbypass

A new XSS bypass for Fortinet FortiGate WAF has been discovered. The payload used is <details open ontoggle="(()=>alert`ibrahimxss`)()"></details>. This bypass allows executing XSS attacks even when protected by FortiGate WAF. Credit: @ibrahimxss_. #xss #wafbypass #fortinet #fortigate #security
For more insights, check out the original tweet here: https://twitter.com/WllGates/status/1820214616388964445

Subscribe for the latest news:

Web application firewalls bypasses collection and testing tools

How to test, evaluate, compare, and bypass web application and API security solutions like WAF, NGWAF, RASP, and WAAP

WAF bypass by WllGates