Polyglot Payloads

Polyglot payloads are attack strings that are valid in multiple contexts, potentially bypassing security filters. For example, a string might be both valid JavaScript and valid HTML. These sophisticated payloads can exploit parser differences and escape sanitization. Prevention requires context-aware input validation and output encoding.