Cobalt Crowdsourced Application PentestCobalt Crowdsourced Application PentestCobalt Crowdsourced Application Pentest

Cobalt Vulnerability Wiki


V10 - Malicious

Subdomain Takeover

POC

  • host subdomain.example.com
  • Navigate to subdomain.example.com, observe the 404 error page.
  • Buy the subdomain
  • Or add the subdomain to your Github repository as custom subdomain

Impact

Medium-High

Likelihood

Medium-High