search

projectdiscovery / nuclei-templates

Community curated list of templates for the nuclei engine to find security vulnerabilities.
https://github.com/projectdiscovery/nuclei
MIT License
9.33k stars 2.65k forks source link

[nuclei-template] Flywheel Subdomain Takeover #1770

Closed smaranchand closed 3 years ago

smaranchand commented 3 years ago

Template Details Flywheel PaaS is vulnerable to subdomain takeover. Since there aren't any supporting writeups/POC's available on the internet I did a writeup as well as made a nuclei template. https://smaranchand.com.np/2021/06/flywheel-subdomain-takeover


id: Flywheel-Takeover

info:
  name: Flywheel Subdomain Takeover
  author: smaranchand
  severity: high
  tags: takeover
  reference: https://smaranchand.com.np/2021/06/flywheel-subdomain-takeover

requests:
  - method: GET
    path:
      - "{{BaseURL}}"
    matchers:
      - type: word
        words:
          - "We're sorry, you've landed on a page that is hosted by Flywheel"
          - "<h1>Oops! That's not the site<br>you're looking&nbsp;for.</h1>"
        condition: and
princechaddha commented 3 years ago

Thanks for sharing this template @smaranchand 🎉