can-i-take-over-xyz icon indicating copy to clipboard operation
can-i-take-over-xyz copied to clipboard

Published 20 hours ago verified publisher icon EdOverflow

Subdomain Takeover Possible via Landingi

Open messi96 opened this issue 6 years ago • 8 comments

Service name

Landingi

Proof

Landingi is Vulnerable to Subdomain Takeover If you get an Error Similar to this one

Fingerprint

  1. Create a new account get a free one for 14 days
  2. Create your own template ( landing page ) for the PoC similar to
$ cat aelfjj1or81uegj9ea8z31zro.html
<!-- PoC by username -->
  1. Add the subdomain under Domains in the left pane.
  2. Subdomain gets successfully verified if it is unclaimed or has dangling CNAME records ( cname.landingi.com. )
  3. On the selected landing page click MORE “...” to expand the list of available actions
  4. Select “PUBLISHING OPTIONS” on the dropdown And then “CHANGE URL” if you want to.
  5. Choose your domain from the list and add a path to it if needed.
  6. Save changes & Publish!
  7. Enjoy your leads.

Documentation

https://landingi.com/knowledge-base

Thanks :)

messi96 avatar Sep 20 '19 16:09 messi96

Hello Is this case still vulnerable ?

0xElmalky avatar Aug 07 '20 09:08 0xElmalky

This is an edge case. Needs to be verified manually

image

image

adityathebe avatar Jan 03 '21 05:01 adityathebe

image this is error from landingi to?

kcnewb1e avatar Feb 26 '21 22:02 kcnewb1e

@adityathebe Is there a way to bypass it ?

ahmedameenaim avatar Feb 28 '21 13:02 ahmedameenaim

I confirm is not possible to take over the subdomains.

pdelteil avatar Jun 04 '21 20:06 pdelteil