This tweet talks about an XSS (Cross-Site Scripting) WAF bypass technique designed to help users enhance their exploitation skills. It suggests that t ...June 17, 2025
This tweet suggests a method to bypass a Web Application Firewall (WAF) using the JavaScript dynamic import() function. The technique might exploit th ...June 17, 2025
This tweet discusses techniques for bypassing Web Application Firewalls (WAF) in the context of Cross-Site Scripting (XSS) vulnerabilities. It highlig ...June 17, 2025
This tweet by @vgrichina and others indicates the release of a WAF bypass cheatsheet, described as a hacker's toolkit. Although the exact WAF ven ...June 17, 2025
This post discusses a WAF bypass technique using full-width Unicode symbols. It targets vulnerabilities like Cross-Site Scripting (XSS) and Carriage R ...June 17, 2025
The tweet contains a question that suggests a method for confirming a WAF bypass. It does not provide any specific details about the vulnerability typ ...June 16, 2025
The tweet does not provide specific details about the WAF bypass. More information is needed to analyze the bypass successfully.
https://twitter.com/S ...June 16, 2025
A WAF bypass has been discovered using obfuscation to sneak an XSS payload past the filter. The WAF initially blocks <script>alert(1)</script ...June 16, 2025
The tweet mentions a simple WAF bypass, but details about the vulnerability type, WAF vendor, and the actual bypass payload are not provided. More inf ...June 16, 2025
This tweet describes a WAF bypass for XSS using obfuscation. The original payload <script>alert(1)</script> is blocked by the WAF, but the ...June 16, 2025
This tweet provides information about a tool that can be used to bypass various types of Web Application Firewalls (WAFs) by following redirects, mimi ...June 15, 2025
Active authentication bypass vulnerabilities have been identified in Versa Concerto. To reduce the risk, organizations can apply two urgent remediatio ...June 15, 2025
This tweet suggests a method to hide injected parameters to bypass a WAF that only allows certain fields. The bypass involves injecting parameters to ...June 15, 2025
The tweet mentions the use of Burp Suite Pro with a Bypass WAF Plugin for manipulating requests in real-time, detecting vulnerabilities in API interfa ...June 15, 2025
The payload used in the tweet successfully bypassed the Cloudflare WAF, but the target treated the payload as a string. Further analysis is required t ...June 11, 2025
The tweet suggests that certain tags are unknown and unpopular in WAFs, making it possible to bypass the WAF or other filters. Further analysis is nee ...June 10, 2025
Researchers discovered a new XSS bypass technique using the onscrollsnapchange event with obfuscated eval logic. This technique can bypass certain WAF ...June 10, 2025
The tweet discusses XSS/SQLi filter bypass techniques using full-width Unicode characters. It is for educational purposes and highlights how these cha ...June 9, 2025
The tweet mentions a tool that has features like dynamic wordlist fetch, multithreaded scan, and redirect/WAF bypass. The GitHub repository contains a ...June 9, 2025
A Web Application Firewall (WAF) is actively filtering out both single quotes (') and double quotes ("). This filtering can be bypassed by u ...June 9, 2025
A payload was created to bypass IDS and execute Remote Code Execution (RCE) by utilizing hex decoding. The payload is <?=eval(hex2bin("696 ...June 8, 2025
The tweet mentions bypassing WAF using the payload 'eval'. This can be considered as a bypass for XSS vulnerabilities. It is important to no ...June 8, 2025
The tweet highlights a vulnerability in React Router that exposes web apps to cache poisoning and WAF bypass attacks. This could potentially lead to d ...June 8, 2025
The tweet discusses an innovative bypass technique for Web Application Firewalls (WAF) that enables attackers to exploit Reflected Cross-Site Scriptin ...June 7, 2025
The tweet suggests that a SQL injection attempt was blocked by a Web Application Firewall (WAF). It highlights that the WAF may be the reason for the ...June 6, 2025
A new bypass technique for Cloudfront WAF has been discovered for XSS vulnerabilities. The payload used for bypassing is <svg/onload=window[&qu ...June 4, 2025
This tweet provides a step-by-step guide on bypassing a WAF for XSS attacks. The payload uses various techniques like string concatenation, replacing ...June 4, 2025