WAF bypass by therceman A bug bounty tip suggests using HTML encoded backquote ` symbol to bypass XSS WAF restrictions in HTML events. The payload inc ... June 20, 2024
WAF bypass by dilagrafie This tweet showcases an XSS payload bypass for Cloudflare WAF. The payload used is '<a HREF="&7 javascrip& ... June 20, 2024
WAF bypass by therceman A tweet shared a clever XSS WAF bypass technique using obfuscated payloads. The payloads obfuscate the 'alert' funct ... June 20, 2024
WAF bypass by zhero___ A WAF bypass technique was discovered where the request bypasses the WAF, allowing the payload to be set as a cookie without d ... June 19, 2024
WAF bypass by U3nerd The tweet discusses Cross-Site Scripting via Web Cache Poisoning and WAF bypass. The blog post provides insights on how to exp ... June 19, 2024
WAF bypass by AtaTurk1925 A bypass payload for XSS targeting CloudFlare WAF (specifically when security level is high) was shared in the tweet. The payl ... June 18, 2024
WAF bypass by zc_cobra The tweet mentions a bypass of Cloudflare's WAF using Java dynamic loading features to implement a bypass of JSP webshell ... June 18, 2024
WAF bypass by ott3rly The tweet mentions a blog post about SQLi WAF Bypass Techniques using Time-Based Attacks. It is recommended to check the blog ... June 18, 2024
WAF bypass by lyubo_tsirkov The tweet mentioned a WAF bypass with the payload 'test1'. The vendor of the WAF is unknown. More details are needed ... June 18, 2024
WAF bypass by bountywriteups A WAF bypass for Cross-Site Scripting via Web Cache Poisoning was discovered. This bypass technique can exploit vulnerabilitie ... June 18, 2024
WAF bypass by lyubo_tsirkov A web cache poisoning to XSS vulnerability was discovered on a bug bounty program. Check out the write-up at the provided link ... June 18, 2024
WAF bypass by dotesec The tweet mentions a XSS vulnerability found in a Turkish clothing brand's website and a WAF bypass method. The details o ... June 18, 2024
WAF bypass by MiniMjStar A tweet mentioned difficulties in bypassing WAFs for XSS attacks. The payload used for bypassing is <script>alert(' ... June 18, 2024
WAF bypass by NinadMishra5 The blog post by @ott3rly discusses SQLi WAF Bypass Techniques using Time-Based Attacks. It provides insights and techniques f ... June 18, 2024
WAF bypass by techypruthu A bounty of 70+19 dollars is being offered for a WAF Bypass with Direct Server Access by the Origin IP. This bypass targets al ... June 16, 2024
WAF bypass by Amier222223 The tweet mentions a Cross-site Scripting (XSS) vulnerability that was reported via YesWeHack platform. The specific type of X ... June 15, 2024
WAF bypass by devploit The tweet mentions a handy tool to bypass 403 Forbidden responses developed by nomore403. This tool could be used to bypass WA ... June 15, 2024
WAF bypass by pentestershihab The tweet indicates the user's interest in learning about XSS and bypassing WAF. They mentioned learning HTML, CSS, and p ... June 14, 2024
WAF bypass by seclink A tweet asking how to bypass Cloudflare WAF. To bypass Cloudflare WAF, you can try using advanced techniques like encoding, ob ... June 14, 2024
WAF bypass by 0xvaeed The tweet highlights the common use of bypass techniques in the red team culture to exploit vulnerabilities. It emphasizes the ... June 14, 2024
WAF bypass by 0xvaeed Two individuals successfully bypassed a normal WAF for exploiting XSS using unicode and bypassed Kaspersky EDR for dumping lsa ... June 14, 2024
WAF bypass by yeswehack The tweet mentions a presentation on bypassing WAFs focusing on filter collisions. This could be a potential XSS bypass techni ... June 14, 2024
WAF bypass by gamesover A WAF bypass was discovered by appending "%2f" to URLs to bypass file extension rules. The rules were converted to r ... June 14, 2024
WAF bypass by Shad0wH3x This tweet mentions a SQL Injection WAF bypass specifically for Ghauri WAF that blocks data extraction. The bypass payload use ... June 13, 2024
WAF bypass by t0t3kingpad4 The tweet mentions a successful bypass of the Berlin WAF using a payload for R-XSS vulnerability. The payload used is "&a ... June 13, 2024
WAF bypass by Cyrus777553 The tweet suggests there is a method to bypass multiple WAFs including Cloudflare, Incapsula, and Sucuri. It would be advisabl ... June 13, 2024
WAF bypass by WEBOUNCER_ Cleveland Ohio has recently fallen victim to a cyberattack, highlighting the need for robust WAF solutions. The popular Akamai ... June 13, 2024
WAF bypass by ynsmroztas This tweet implies a universal WAF bypass where the type of domain (origin IP or WAF) does not matter as long as the bypass is ... June 13, 2024
WAF bypass by 0xcris_prp A SQL injection bypass was discovered in Portswigger Lab's WAF using XML encoding. The tweet describes a payload crafted ... June 12, 2024
WAF bypass by Cipher0ps_tech Bypassing WAF through a large number of characters can be an effective technique for various vulnerabilities like XSS, SQLi, R ... June 12, 2024