Subdomain Takeover Possible via Landingi

[messi96]

Service name

Landingi

Proof

Landingi is Vulnerable to Subdomain Takeover
If you get an Error Similar to this one

1. Create a new account get a free one for 14 days
2. Create your own template ( landing page ) for the PoC similar to

$ cat aelfjj1or81uegj9ea8z31zro.html
<!-- PoC by username -->

3. Add the subdomain under Domains in the left pane.
4. Subdomain gets successfully verified if it is unclaimed or has dangling CNAME records ( cname.landingi.com. )
5. On the selected landing page click MORE “...” to expand the list of available actions
6. Select “PUBLISHING OPTIONS” on the dropdown And then “CHANGE URL” if you want to.
7. Choose your domain from the list and add a path to it if needed.
8. Save changes & Publish!
9. Enjoy your leads.

Documentation

https://landingi.com/knowledge-base

Thanks :)

[0xElmalky]

Hello Is this case still vulnerable ?

[adityathebe]

This is an edge case. Needs to be verified manually

[kcnewb1e]

this is error from landingi to?

[ahmedameenaim]

@adityathebe Is there a way to bypass it ?

[pdelteil]

I confirm is not possible to take over the subdomains.

[Nikhil28-09-04]

Will this be vulnerable?? @pdelteil