Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
hackeroneDoosec101H1:1256389
HistoryJul 09, 2021 - 8:59 p.m.

Acronis: Subdomain takeover of main domain of https://www.cyberlynx.lu/

2021-07-0920:59:39
doosec101
hackerone.com
$100
142
acronis security team
subdomain
www.cyberlynx.lu
wix
claim
attack
damage
cname
dns
JSON

Summary

Hi Acronis Security Team , Hope you well.
I found one of your subdomains which is www.cyberlynx.lu (One of your Acquisition) is pointing towards

www.cyberlynx.lu canonical name = www118.wixdns.net. www118.wixdns.net canonical name = balancer.wixdns.net. balancer.wixdns.net canonical name = f7a0737a-balancer.wixdns.net. f7a0737a-balancer.wixdns.net canonical name = td-balancer-dc11-60-102.wixdns.net.
see the following:-

{F1371299}

{F1371300}

And it is unclaimed

##Steps To Reproduce:
1. Go to http://site.therealreal.com , Gives 404
2. the domain pointing towards to WIX cdn
3. Anyone can claim this subdomain

##Similar report at H1:-

Please let me know if need more info , OR need for poc video
Best Regards.
@doosec101

Impact

An attacker can claim this subdomain by requesting a process of registering this abandoned subdomain to his name.
And attacker can fully take over this subdomain and do whatever he wants. this can cause huge damage to the website’s main domain as well as to the company.

I Recommend removing the Cname and DNS connecting to it.

JSON