Source: Deteact Blog

Deteact Blog Bitrix WAF bypass

In Russian: https://blog.deteact.com/ru/bitrix-waf-bypass/ Sometimes when exploiting reflected XSS the input parameters get injected directly into the body of the <script> tag. Typically, this means that the exploit is trivial: HTML entity encoding will not prevent it, and many firewalls (including now obsolete Chrome XSS Auditor) won’t either. But CMS Bitrix has its own built-in proactive continue reading The post Bitrix WAF bypass appeared first on Deteact - continuous information security services.

Read full article »
Deteact's Competitors | Deteact's News | Deteact's Financials
Stay up-to-date with the latest news on Deteact
Est. Annual Revenue
$100K-5.0M
Est. Employees
1-25
Omar Ganiev's photo - Founder of Deteact

Founder

Omar Ganiev

CEO Approval Rating

93/100

Read more
Stay up-to-date with the latest news on Deteact