The tweet mentions testing for reflected or stored XSS vulnerabilities but only finding text injection after manual testing. No WAF bypass XSS payloads were successful, leading to no bounty. This highlights the importance of thorough testing and the challenges of bypassing WAF protection for XSS vulnerabilities.
For more insights, check out the original tweet here: https://twitter.com/rudradas01/status/1843522394281128332. And don’t forget to follow @rudradas01 for more exciting updates in the world of cybersecurity.