From b829834a26bb9f829d80e1f04097ce0412dd36c2 Mon Sep 17 00:00:00 2001 From: grundsch Date: Thu, 15 Aug 2024 10:33:18 +0200 Subject: [PATCH 1/2] Update README.md - zendesk help center IS vulnerable Discussion in Issue @23 confirms that the zendesk help center is vulnerable to take over. Confirmed as per August 2024. --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index 53b01e0..7457431 100644 --- a/README.md +++ b/README.md @@ -132,6 +132,6 @@ Column header definitions: | Wix | Edge case | 🟥 | | `Looks Like This Domain Isn't Connected To A Website Yet!` | [Issue #231](https://github.com/EdOverflow/can-i-take-over-xyz/issues/231) | | | Wordpress | Vulnerable | 🟩 | wordpress.com | `Do you want to register .*.wordpress.com?` | [PR #176](https://github.com/EdOverflow/can-i-take-over-xyz/pull/176) | | | Worksites | Vulnerable | 🟩 | worksites.net, 69.164.223.206 | `Hello! Sorry, but the website you’re looking for doesn’t exist.` | [Issue #142](https://github.com/EdOverflow/can-i-take-over-xyz/issues/142) | | -| Zendesk | Not vulnerable | 🟥 | | `Help Center Closed` | [Issue #23](https://github.com/EdOverflow/can-i-take-over-xyz/issues/23) | [Zendesk Support](https://support.zendesk.com/hc/en-us/articles/203664356-Changing-the-address-of-your-Help-Center-subdomain-host-mapping-) | +| Zendesk | Vulnerable | 🟩 | | `Help Center Closed` | [Issue #23](https://github.com/EdOverflow/can-i-take-over-xyz/issues/23) | [Zendesk Support](https://support.zendesk.com/hc/en-us/articles/203664356-Changing-the-address-of-your-Help-Center-subdomain-host-mapping-) | From 4dd377d98ed815e4129e92ede01072cd75a57d4f Mon Sep 17 00:00:00 2001 From: grundsch Date: Thu, 15 Aug 2024 10:42:35 +0200 Subject: [PATCH 2/2] Update README.md Actual fingerprint is the redirect location url: You are being redirected --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index 7457431..6a369ae 100644 --- a/README.md +++ b/README.md @@ -132,6 +132,6 @@ Column header definitions: | Wix | Edge case | 🟥 | | `Looks Like This Domain Isn't Connected To A Website Yet!` | [Issue #231](https://github.com/EdOverflow/can-i-take-over-xyz/issues/231) | | | Wordpress | Vulnerable | 🟩 | wordpress.com | `Do you want to register .*.wordpress.com?` | [PR #176](https://github.com/EdOverflow/can-i-take-over-xyz/pull/176) | | | Worksites | Vulnerable | 🟩 | worksites.net, 69.164.223.206 | `Hello! Sorry, but the website you’re looking for doesn’t exist.` | [Issue #142](https://github.com/EdOverflow/can-i-take-over-xyz/issues/142) | | -| Zendesk | Vulnerable | 🟩 | | `Help Center Closed` | [Issue #23](https://github.com/EdOverflow/can-i-take-over-xyz/issues/23) | [Zendesk Support](https://support.zendesk.com/hc/en-us/articles/203664356-Changing-the-address-of-your-Help-Center-subdomain-host-mapping-) | +| Zendesk | Vulnerable | 🟩 | | `help-center-closed` | [Issue #23](https://github.com/EdOverflow/can-i-take-over-xyz/issues/23) | [Zendesk Support](https://support.zendesk.com/hc/en-us/articles/203664356-Changing-the-address-of-your-Help-Center-subdomain-host-mapping-) |