https://waf.cumulusfire.net/

ID de l'analyse :: 39160a00-014a-4722-b4de-e20d8355c47eTerminée
URL soumise :: https://waf.cumulusfire.net/
Fin du rapport :: 1 nov. 2024, 11:15:25

Liens : 6 trouvé(s)

Liens sortants identifiés à partir de la page

Lien	texte
https://developers.cloudflare.com/waf/	here
https://cumulusfire.net	Back to CumulusFire
https://www.cloudflare.com/privacypolicy/	Privacy Policy
https://www.cloudflare.com/website-terms/	Terms of Use
https://www.cloudflare.com/abuse/	Trust& Safety
https://www.cloudflare.com/trademark/	Trademark

Variables JavaScript : 3 trouvée(s)

Les variables JavaScript globales chargées dans l'objet fenêtre d'une page sont des variables déclarées en dehors des fonctions et accessibles depuis n'importe quel endroit du code au sein du champ d'application actuel

Nom	Type
onbeforetoggle	object
documentPictureInPicture	object
onscrollend	object

Messages de journal de console : 0 trouvé(s)

Messages consignés dans la console web

HTML

Le corps HTML de la page en données brutes

<html><head>
        <meta charset="utf-8">
        <title>CumulusFire</title>
        <link rel="shortcut icon" type="image/x-icon" href="https://storage.googleapis.com/cumulusfire_greeting/img/favicon.ico">
        <link rel="stylesheet" type="text/css" href="https://storage.googleapis.com/cumulusfire_greeting/img/layout.css">
      </head>
      <body>
      <h1> Welcome WAF Tester </h1>
      <ul> 
        <li> The Cloudflare Web Application Firewall (Cloudflare WAF) checks incoming web and API requests and filters undesired traffic based on sets of rules called rulesets.</li>
        <li> Learn more about the product <a href="https://developers.cloudflare.com/waf/">here</a> </li>
      </ul>
      <h3> Query parameter names for XSS</h3>
      <ul> 
        <li> XSS in HTML context - <a href="/?globalHtml=payload">?globalHtml=payload</a> </li>
        <li> XSS in HTML attribute context - <a href="?attributeHtml=payload">?attributeHtml=payload</a> </li>
      </ul>
      <h3> Mandatory Requirement </h3>
      <ul> 
        <li> Test report should clearly show evidence of bypass </li>
        <li> Example: for XSS bypass, you must execute arbitrary Javascript. This means an alert(1) pop-up at minumum.</li>
      </ul>

        <div>
          
        </div>

        <div>
          <input type="text" value="">
        </div>
        <footer class="footer">
          <div class="main-footer__container">
            <div class="main-footer__menu_bottom">
              <div class="main-footer__menu_bottom__container">
                <div class="main-footer__menu_bottom__copyright">
                  <span>© 2019 Cloudflare, Inc.</span>
                  <div align="left">
                    <a href="https://cumulusfire.net">Back to CumulusFire</a>
                  </div>
                  <div>
                    <a href="https://www.cloudflare.com/privacypolicy/">Privacy Policy</a>
                    <a href="https://www.cloudflare.com/website-terms/">Terms of Use</a>
                    <a href="https://www.cloudflare.com/abuse/">Trust &amp; Safety</a>
                    <a href="https://www.cloudflare.com/trademark/">Trademark</a>
                  </div>
                </div>
              </div>
            </div>
          </div>
        </footer>
      
    </body></html>