Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Mashery #14

Closed
random-robbie opened this issue Apr 19, 2018 · 8 comments
Closed

Mashery #14

random-robbie opened this issue Apr 19, 2018 · 8 comments
Labels
not vulnerable Someone has made it very clear that this service is not vulnerable to subdomain takeovers.

Comments

@random-robbie
Copy link
Contributor

Since the H1 report it's no longer possible to take over the domain.
Capture.png

@ttymeh
Copy link

ttymeh commented Jun 7, 2018

Mashery no longer lets trial users add custom domains. I believe a paid user can though.

@ttymeh
Copy link

ttymeh commented Jun 7, 2018

Starting at $1995/month

@codingo
Copy link
Collaborator

codingo commented Jun 13, 2018

Addressed in #15 and #16 (one for title and one for long description).

@EdOverflow EdOverflow added the not vulnerable Someone has made it very clear that this service is not vulnerable to subdomain takeovers. label Sep 9, 2018
@EdOverflow EdOverflow reopened this Sep 9, 2018
@codingo
Copy link
Collaborator

codingo commented Oct 15, 2018

Resolved via #54

@codingo codingo closed this as completed Oct 15, 2018
@codingo
Copy link
Collaborator

codingo commented Apr 11, 2019

These do appear to be vulnerable now with a paid account. Although Mashery seeks account approval manually, once the account is paid this does not include any sort of company verification (such as a company e-mail, or A record).

@pdelteil
Copy link
Contributor

anyone has more information regarding this takeover?

@m3chboy
Copy link

m3chboy commented Jul 29, 2023

Any update on this?

@valaDevs
Copy link

valaDevs commented Jan 6, 2024

Is there any update on this issue?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
not vulnerable Someone has made it very clear that this service is not vulnerable to subdomain takeovers.
Projects
None yet
Development

No branches or pull requests

7 participants