Closed xElkomy closed 9 months ago
Unbounce is still vulnerable but it's a pretty rare edge case, I checked ~30 and only found one vulnerable takeover. If you're getting too much Unbounce spam you can ignore it with the --exclude-unlikely flag. I believe the vulnerability happens when they point to a domain but never actually deploy anything to it or an account is deleted.
Unbounce Not Vulnerable
https://github.com/EdOverflow/can-i-take-over-xyz/issues/11