-
## Service name
UltraDNS
## Query
I was trying to find the registration page to register an account on UltraDNS so that i can takeover the subdomain. However, no luck on it. Kindly help me if any…
-
## Service name
betterstack.com
## Proof
Requires no account specific key or…
-
Hi Polymath Security Team,
I found that your website is suffering from subdomain takeover pointing to Unbounce pages but no such page is connected to the external server which is very dangerous.
…
-
it was possible for a basic user to takeover any account using the ID Parameter.
How to Reproduce
-Edit the GET request
-Manipulate the User ID
-For further clarification, please follow the evi…
-
Hi,
Instapage should be changed to Edge Case IMHO. I believe that as long as the original account that had the domain registered is deleted/suspended it is still possible to takeover.
## Service…
-
### Service [DNSimple](https://dnsimple.com/)
### Status Vulnerable
### Nameserver
> ns1.dnsimple.com
ns2.dnsimple.com
ns3.dnsimple.com
ns4.dnsimple.com
### Explanation
You can…
-
## Service name
Uberflip
## Proof
https://hackerone.com/reports/863551
## Documentation
If the subdomain shows error "Non-hub domain, The URL you've accessed does not provide a hub. Please ch…
-
### Service Microsoft Azure
### Status Edge Case
### Nameserver
ns1-\*\*.azure-dns.com
ns2-\*\*.azure-dns.net
ns3-\*\*.azure-dns.org
ns4-\*\*.azure-dns.info
### UPDATE
It seems a lot…
-
Hi, On June 17 an article came out demonstrating a way to get a TGT ticket or NTLM hash via the msDS-KeyCredentialLink attribute.
Post: https://posts.specterops.io/shadow-credentials-abusing-key-tru…
-
When a user is created from the login page there is a race condition with parallel normal user creation. To our knowledge it may be possible that a slightly earlier user creation could lead to the use…