search

EdOverflow / can-i-take-over-xyz

"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
Creative Commons Attribution 4.0 International
4.89k stars 720 forks source link

subdomain takeover cloudfront #61

Closed moe91 closed 6 years ago

moe91 commented 6 years ago

Service name

Hi, I check many sites daily of this security vulnerability and extracted many subdomains and while trying to register it is a problem as in the image of the solution 1 p2l3697uaa7mxkb6vng8yw

Proof

Documentation

codingo commented 6 years ago

This is still possible in some circumstances (such as when the cname is pointed twice). On my phone but I'll update appropriaty soon.

moe91 commented 6 years ago

This is still possible in some circumstances (such as when the cname is pointed twice). On my phone but I'll update appropriaty soon.

I did not understand did you mean that there is a skip through a phone, for example, or you will download an update soon to overcome this problem

codingo commented 6 years ago

This is better explained in #29