WAF bypass by 0xAwali The tweet mentions talks on WAF bypass techniques at #NahamCon2024. Topics include The Art of Bypassing WAFs, Modern WAF Bypas ... May 21, 2024
WAF bypass by shoucccc A Cross-Site Scripting (XSS) vulnerability was successfully exploited on Etherscan by utilizing funky sanitizers to bypass Clo ... May 21, 2024
WAF bypass by MiniMjStar The tweet mentions an XSS blog but no WAF bypass. Here is a simple XSS payload that can bypass many WAFs: <script>alert( ... May 21, 2024
WAF bypass by smartpentesters A tweet was found with an XSS bypass payload. The payload used is <A HRef=" AutoFocus OnFocus=top/**/?.['al' ... May 21, 2024
WAF bypass by bug_vs_me The tweet mentions bypassing almost all Web Application Firewalls (WAFs), but the user cannot publicly post them as they fear ... May 21, 2024
WAF bypass by SanSYS The tweet mentions a website dedicated to recipes for WAF bypass. This can be a collection of techniques and methods used to b ... May 21, 2024
WAF bypass by tabaahi_ A bug was reported to the target and it took about an hour to bypass the WAF. It would be beneficial to provide more details a ... May 21, 2024
WAF bypass by pentestkit The tweet mentions the release of OWASP PTK v 8.9 with cheat sheets for XSS and SQL injections. It highlights various attack p ... May 21, 2024
WAF bypass by 0xSabir The tweet mentions a SQL injection vulnerability and suggests trying to bypass a WAF. The payload provided is a single quote w ... May 21, 2024
WAF bypass by hakluke The tweet highlights a common misconception about WAF bypass requests. The payload used for the bypass is HTML encoding, which ... May 21, 2024
WAF bypass by NovianaPutri29 The tweet describes a Stored XSS bypass on a private bug bounty program at Hacker One using the payload <Img Src=OnXSS OnEr ... May 21, 2024
WAF bypass by RootMoksha A bypass for HTML scenarios targeting XSS vulnerability has been identified with the payload <A HRef=" AutoFocus OnFoc ... May 21, 2024
WAF bypass by 0x44dt To bypass Cloudfront WAF, you can try various techniques such as header manipulation, parameter tampering, or encoding tricks. ... May 21, 2024
WAF bypass by 0x44dt A new Cloud Front WAF bypass technique has been discovered. The bypass payload successfully evades Cloud Front WAF protections ... May 21, 2024
WAF bypass by Rapido_hacking_ A stored XSS vulnerability was discovered on a private bug bounty program hosted on HackerOne. The bypass payload used for WAF ... May 21, 2024
WAF bypass by Mckinnon_Gary1 A stored XSS vulnerability was discovered in a private bug bounty program hosted on HackerOne. The bypass payload used was ... May 21, 2024
WAF bypass by Javarecyberhack A stored XSS bypass was discovered on a private bug bounty program hosted on HackerOne. The bypass payload used was <Img Sr ... May 21, 2024
WAF bypass by unbanxs The tweet describes a Remote Code Execution (RCE) vulnerability via Server-Side Template Injection (SSTI) on Spring Boot Error ... May 21, 2024
WAF bypass by PrinceOker79109 A stored XSS vulnerability was discovered in a private bug bounty program on HackerOne. The bypass payload used was <Img Sr ... May 21, 2024
WAF bypass by KN0X55 A bypass for a WAF in HTML scenario has been discovered for XSS vulnerability. The payload used for bypass is <A HRef=\&quo ... May 21, 2024
WAF bypass by TakSec A new XSS vulnerability has been discovered in Akamai WAF by @BRuteLogic. The bypass payload '"><' ... May 21, 2024
WAF bypass by TakSec Akamai WAF bypass XSS Payload discovered by @BRuteLogic. The payload is 1'"><A HRef=\" AutoFocus ... May 20, 2024
WAF bypass by grumpzsux This XSS bypass works on ASPNET Generic Microsoft WAF, detected by AFW00F. The payload used is '<details%0Aopen%0A ... May 20, 2024
WAF bypass by iamunixtz This tweet discusses bypassing Akamai WAF during Nmap scanning. It appears to be a technique rather than a specific payload. H ... May 20, 2024
WAF bypass by coffinxp7 Ghauri has blind XOR payloads that SQLMap doesn't have. SQLMap is easily blocked by WAF, but Ghauri bypasses it easily. I ... May 20, 2024
WAF bypass by grumpzsux This tweet highlights a WAF evasion technique targeting Cloudflare and ModSecurity using an uninitialized Bash variable to byp ... May 20, 2024
WAF bypass by grumpzsux The tweet highlights the vulnerability in IDS, IPS, and WAFs due to the design limitations of the PHP query string parser. Thi ... May 20, 2024
WAF bypass by grumpzsux The tweet discusses exploiting PHP remotely to bypass filters and WAF rules, highlighting the possibilities of executing code ... May 20, 2024
WAF bypass by irsdl The tweet suggests that most bug bounty hunters are not willing to pay for a complete WAF bypass, only for impactful vulnerabi ... May 20, 2024
WAF bypass by javr00t The tweet mentions internal Recon, WAF Bypass, and creating a backdoor. It seems to be discussing a process involving reconnai ... May 20, 2024