Karl Aparece comments

Results 4 comments of


                                            Karl Aparece

Security Report: Subdomain Takeover of https://temp-send.kava.io/ Pointing to Netlify

Thank you so much for the great response. I can confirm the fix was implemented. Regarding the way of reproduction. Yes, it is easy by simply adding a custom domain...

Security Report: Subdomain Takeover of https://temp-send.kava.io/ Pointing to Netlify

This is vulnerable in an edge case scenario. That is why removing a dangling DNS record is very important to monitor. BTW I already sent an email to [email protected]

Security Report: Subdomain Takeover of https://temp-send.kava.io/ Pointing to Netlify

Just want to update that I added a new report via [email protected] and it's already fixed. No response yet from that channel.

Security Report: Subdomain Takeover of https://go.polymath.network Pointing to unbounce

Thanks for the great repsonse, In my past experience with this particular takeover, It works when the account using the subdomain has been deleted. In the mean time, takeover is...