Greetings!, Hope Y'all good and fine.
I would like to report another vulnerability very Similar to my other report in #975991
Due to lack of secure design, I was able to find the origin IPs behind Cloludflare WAF.
The IPs I found belong to :
I was able to find and access the Origin IPs behind the WAF due to lack of access control, I could also port scan the IP
The IP found : 188.8.131.52
As reported in many other submissions, Cloudflare bypasses can have a significant impact, as any adversary is now able to communicate with the origin server directly, enabling them to perform unfiltered attacks (such as denial-of-service), and data retrieval.
This attack vector can be extremely bad because with the IP found out an attacker could attack the servers by DDoS or other attacks without being stopped by CloudFlare.]