4 matches found
CVE-2023-36474
Interactsh is an open-source tool for detecting out-of-band interactions. Domains configured with interactsh server prior to version 1.0.0 were vulnerable to subdomain takeover for a specific subdomain, i.e app. Interactsh server used to create cname entries for app pointing to...
CVE-2023-36474
creationtimestamp| type| source ---|---|--- 2023-06-29 02:13:18+00:00| seen| https://t.me/cibsecurity/65703...
CVE-2023-36474 Interactsh server settings make users vulnerable to Subdomain Takeover
Interactsh is an open-source tool for detecting out-of-band interactions. Domains configured with interactsh server prior to version 1.0.0 were vulnerable to subdomain takeover for a specific subdomain, i.e app. Interactsh server used to create cname entries for app pointing to...
CVE-2023-36474
CVE-2023-36474 concerns Interactsh server (self-hosted) where domains configured before v1.0.0 could be vulnerable to subdomain takeover. The default setup created a CNAME for the app subdomain pointing to projectdiscovery.github.io, enabling takeover and enabling an attacker to host arbitrary cl...