An XSS bypass technique was identified using the payload 'onerror=alert;throw 123;' which can bypass various WAFs. This payload utilizes the onerror event to execute an alert and then throw an error. WAFs should be aware of this technique and update their security rules accordingly.
For more insights, check out the original tweet here: https://twitter.com/vcantry/status/1893990102977679691. And don’t forget to follow @vcantry for more exciting updates in the world of cybersecurity.