Data was sent in XML format through the stock check feature:
When we inserted a tick ('), we received an “attack detected” message:
Attempts to enumerate columns were blocked by the WAF:
We then used the Hackvertor extension. By highlighting the input, right-clicking, and selecting Extensions > Hackvertor > Encode > dec_entities/hex_entities, we were able to bypass the WAF:
We also used Hackvertor to see how the input appeared in the output when encoded in hex:
Manual encoding also worked:
Finally, we logged in as admin and solved the lab:
