Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Subdomain Takeover via HubSpot #59

Open
m7mdharoun opened this Issue Oct 20, 2018 · 4 comments

Comments

Projects
None yet
3 participants
@m7mdharoun
Copy link

m7mdharoun commented Oct 20, 2018

HubSpot

Proof

Example of https://hackerone.com/reports/38007

Doc

I do the same takeover last 2 days so The vulnerability is still exist .

@m7mdharoun m7mdharoun changed the title Subdomain Takeover Via HubSpot Subdomain Takeover via HubSpot Oct 20, 2018

@codingo

This comment has been minimized.

Copy link
Collaborator

codingo commented Nov 12, 2018

@m7mdharoun I'm pretty familiar with this one and somewhat doubt your claim. Could you please provide a link to your more recent issue (if disclosed) or at minimum some further information?

@codingo codingo self-assigned this Nov 12, 2018

@m7mdharoun

This comment has been minimized.

Copy link
Author

m7mdharoun commented Nov 12, 2018

@codingo I've disclosed the Bug Report but without the premssion of PayPal So someone report Hackerone Support and They warning me Poc here
hubspot

FingerPrint : Domain Not found
hubspot finger

@codingo

This comment has been minimized.

Copy link
Collaborator

codingo commented Nov 13, 2018

Excellent, thank-you for the prompt response. I'll update the repo shortly.

@m7mdharoun

This comment has been minimized.

Copy link
Author

m7mdharoun commented Nov 13, 2018

@codingo Please check your twitter messages I've sent you the POC link

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
You can’t perform that action at this time.