greatpages-takeover: GreatPages - Takeover Detection

日期: 2025-08-01 | 影响软件: GreatPages | POC: 已公开

漏洞描述

Detects potential subdomain takeover on GreatPages.com.br by identifying the default error message shown on unclaimed pages.

PoC代码[已公开]

id: greatpages-takeover

info:
  name: GreatPages - Takeover Detection
  author: juliosmelo
  severity: high
  description: |
    Detects potential subdomain takeover on GreatPages.com.br by identifying the default error message shown on unclaimed pages.
  reference:
    - https://greatpages.com.br
  metadata:
    verified: true
    fofa-query: cname="cname.greatpages.com.br"
    max-request: 1
  tags: takeover,greatpages,vuln

http:
  - method: GET
    path:
      - "{{BaseURL}}"

    matchers-condition: and
    matchers:
      - type: dsl
        dsl:
          - Host != ip

      - type: word
        words:
          - "Página não encontrada (Erro 404)"

    extractors:
      - type: dsl
        dsl:
          - cname
# digest: 4b0a00483046022100e6b2f0c75f0836778125bb768a0a05256bf5f6e845322aa72ff0b6f8fc16dce6022100cb43d52337eecf2487d7fc7a06f059bb7466fabe143b51ba1f56257eded4e802:922c64590222798bb761d5b6d8e72950
来源: https://github.com/projectdiscovery/nuclei-templates/blob/main/http/takeovers/greatpages-takeover.yaml

相关漏洞推荐