subdomain-takeover

24 articles
Sort: New Top Best
clear filter
bug-bounty625 facebook443 xss316 google119 rce106 microsoft66 csrf60 web355 account-takeover55 writeup50 malware43 sqli41 apple41 exploit40 ssrf35 cve34 privilege-escalation34 dos34 cloudflare29 defi28 phishing25 smart-contract-vulnerability25 access-control25 ethereum24 smart-contract24 clickjacking24 idor24 subdomain-takeover24 vulnerability-disclosure23 remote-code-execution21 auth-bypass19 lfi18 race-condition16 cloud15 authentication-bypass15 cors15 solidity15 node15 aws14 reverse-engineering13 oauth13 web-security12 sql-injection12 supply-chain12 denial-of-service11 info-disclosure11 browser11 delegatecall11 web-application-security11 vulnerability10
0
Unrestricted file upload to RCE
vulnerability
apple bug-bounty cloud exploit facebook google pentest rce subdomain-takeover xss
blog.securitybreached.org · devanshbatham/Awesome-Bugbounty-Writeups · 3 hours ago · details
0
Subdomain takeover Starbucks (Part 2)
bug-bounty

A subdomain takeover vulnerability was discovered on Starbucks where an unclaimed CNAME pointing to a non-existent Azure Traffic Manager subdomain (s00149tmppcrpt.trafficmanager.net) could be hijacked by registering the Traffic Manager profile without domain ownership verification. The researcher was awarded a $2,000 bounty for this finding.

subdomain-takeover azure azure-traffic-manager dns cname nxdomain bug-bounty domain-takeover misconfiguration security-research
Starbucks Microsoft Azure Azure Traffic Manager wfmnarptpc.starbucks.com s00149tmppcrpt.trafficmanager.net trafficmanager.net Patrik Hudak
0xpatrik.com · devanshbatham/Awesome-Bugbounty-Writeups · 3 hours ago · details
0
Subdomain takeover Starbucks
security
subdomain-takeover
0xpatrik.com · devanshbatham/Awesome-Bugbounty-Writeups · 3 hours ago · details
0
Bugcrowd domain subdomain takeover vulnerability
bug-bounty
bug-bounty subdomain-takeover
blog.securitybreached.org · devanshbatham/Awesome-Bugbounty-Writeups · 3 hours ago · details
0
Subdomain takeover vulnerability (Lamborghini Hacked)
security
subdomain-takeover
blog.securitybreached.org · devanshbatham/Awesome-Bugbounty-Writeups · 3 hours ago · details
0
Uber wildcard subdomain takeover
security
subdomain-takeover
blog.securitybreached.org · devanshbatham/Awesome-Bugbounty-Writeups · 3 hours ago · details
0
Subdomain takeover via unsecured s3 bucket
security
cloud subdomain-takeover
blog.securitybreached.org · devanshbatham/Awesome-Bugbounty-Writeups · 3 hours ago · details
0
Escalating subdomain takeover to steal sensitive stuff
security
subdomain-takeover
blog.takemyhand.xyz · devanshbatham/Awesome-Bugbounty-Writeups · 3 hours ago · details
0
Subdomain takeover worth 200
security
subdomain-takeover
medium.com · devanshbatham/Awesome-Bugbounty-Writeups · 3 hours ago · details
0
Subdomain takeover awarded 200
security
subdomain-takeover
medium.com · devanshbatham/Awesome-Bugbounty-Writeups · 3 hours ago · details
0
Subdomain takeover due to misconfigured project settings for custom domain
security
subdomain-takeover
medium.com · devanshbatham/Awesome-Bugbounty-Writeups · 3 hours ago · details
0
How to do 55000 subdomain takeover in a blink of an eye
security
subdomain-takeover
medium.com · devanshbatham/Awesome-Bugbounty-Writeups · 3 hours ago · details
0
How I bought my way to subdomain takeover on tokopedia
bug-bounty
bug-bounty subdomain-takeover
medium.com · devanshbatham/Awesome-Bugbounty-Writeups · 3 hours ago · details
0
Subdomain takeover : new level
bug-bounty
bug-bounty subdomain-takeover
medium.com · devanshbatham/Awesome-Bugbounty-Writeups · 3 hours ago · details
0
Subdomain Takeover via pantheon
security
subdomain-takeover
smaranchand.com.np · devanshbatham/Awesome-Bugbounty-Writeups · 3 hours ago · details
0
Authentication bypass on SSO ubnt.com via Subdomain takeover of ping.ubnt.com
authentication
auth-bypass subdomain-takeover
arneswinnen.net · devanshbatham/Awesome-Bugbounty-Writeups · 3 hours ago · details
0
Authentication bypass on uber's SSO via subdomain takeover
authentication
auth-bypass subdomain-takeover
arneswinnen.net · devanshbatham/Awesome-Bugbounty-Writeups · 3 hours ago · details
0
Subdomain takeover via campaignmonitor
security
subdomain-takeover
mohamedharon.com · devanshbatham/Awesome-Bugbounty-Writeups · 3 hours ago · details
0
Subdomain takeover via shopify vendor
security
subdomain-takeover
mohamedharon.com · devanshbatham/Awesome-Bugbounty-Writeups · 3 hours ago · details
0
Souq.com subdomain takeover
security
subdomain-takeover
mohamedharon.com · devanshbatham/Awesome-Bugbounty-Writeups · 3 hours ago · details
0
Subdomain takeover via Hubspot
security
subdomain-takeover
mohamedharon.com · devanshbatham/Awesome-Bugbounty-Writeups · 3 hours ago · details
0
Subdomain takeover via wufoo service
security
subdomain-takeover
mohamedharon.com · devanshbatham/Awesome-Bugbounty-Writeups · 3 hours ago · details
0
Subdomain takeover : a unique way
security
subdomain-takeover
mohamedharon.com · devanshbatham/Awesome-Bugbounty-Writeups · 3 hours ago · details