helprace-takeover: Helprace Takeover Detection

日期: 2025-08-01 | 影响软件: Helprace | POC: 已公开

漏洞描述

Helprace takeover was detected.

PoC代码[已公开]

id: helprace-takeover

info:
  name: Helprace Takeover Detection
  author: pdteam
  severity: high
  description: Helprace takeover was detected.
  reference:
    - https://github.com/EdOverflow/can-i-take-over-xyz/issues/115
  metadata:
    max-request: 1
  tags: takeover,helprace,vuln

http:
  - method: GET
    path:
      - "{{BaseURL}}"

    matchers-condition: and
    matchers:
      - type: dsl
        dsl:
          - Host != ip

      - type: word
        words:
          - "Alias not configured!"
          - "Admin of this Helprace account needs to set up domain alias"

    extractors:
      - type: dsl
        dsl:
          - cname
# digest: 4a0a0047304502207d44783bfb57693fc819eb959f27a3e004db9ea618b07433e620e39aa18def67022100c9b240176064811b12bbe9b749de7afbcc443f83a9626ae2b60e0504c7560e82:922c64590222798bb761d5b6d8e72950
来源: https://github.com/projectdiscovery/nuclei-templates/blob/main/http/takeovers/helprace-takeover.yaml

相关漏洞推荐