-
-
Notifications
You must be signed in to change notification settings - Fork 718
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Shopify is vulnerable by a New FingerPrint #46
Comments
This isn't really a new fingerprint, it's an edge case. Tested this now and it requires the store to be created, but never linked to the domain. Even if the shop is in the portal with a status of "not connected" (i.e. added to any account in advance of DNS), it can not be taken over. Going to call this an edge case since there's some truth to it, but I think it's a fairer assessment to say it's not vulnerable as it's such an unlikely scenario that somebody would point DNS before adding their domain into their account. |
Resolved in #52 |
hello @codingo, I have found several subdomains that had the fingerprints:
But when visiting the CNAME, it showed a perfectly working shop in shopify. So shop.example.com was giving me "shop is currently unavailable" but when visiting example.myshopify.com it was a perfectly working shop. Is this still vulnerable? |
Hello @codingo Verify if the name of the store is available or not |
I tookover a domain like the example above as well. |
I just managed to takeover subdomain with fingerprint "Only one step left! |
I did the same as explained above ? will this be accepted? |
I recently had a subdomain takeover on Shopify as well as described above |
Date: 04/09/2022 I takeover one. |
Just took over a subdomain with "Only one step left" fingerprint. Same procedure as Mouja0412 |
Shopify is Still Vulnerable ❤️ |
"Upon visiting the domain, I received the message "Sorry, this store is currently unavailable." However, Shopify indicates that the same domain, flagged as vulnerable to takeover by Nuclei, is currently in use. Can someone clarify this discrepancy and its implications for subdomain takeover? |
. |
Shopify is not vulnerable anymore right? need some confirmation from this community |
Shopify
Proof
https://hackerone.com/reports/416474
Documentation
Not Only FingerPrint
Sorry, this shop is currently unavailable.
New FingerPrint that I've found in my report
Now Your domain ( Name of subdomain ) is ready to connect to your Shopify Shop
The text was updated successfully, but these errors were encountered: