You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
cloud.appwrite.io is a service provided by Appwrite that allows clients to use custom domains by setting up a CNAME record pointing to cloud.appwrite.io.
If the custom domain is unclaimed or the associated Appwrite project is deleted, the subdomain becomes vulnerable to takeover. This occurs because the DNS record remains active, but the service no longer verifies ownership or serves content, leading to a 403 error.
Proof
Setup a CNAME pointing to cloud.appwrite.io
Example:
Service name
cloud.appwrite.io is a service provided by Appwrite that allows clients to use custom domains by setting up a CNAME record pointing to cloud.appwrite.io.
If the custom domain is unclaimed or the associated Appwrite project is deleted, the subdomain becomes vulnerable to takeover. This occurs because the DNS record remains active, but the service no longer verifies ownership or serves content, leading to a 403 error.
Proof
Setup a CNAME pointing to cloud.appwrite.io
Example:
Check for Vulnerability
Access the subdomain (https://vulnerable.example.com) and observe a response like:
Takeover the Subdomain
Go to console and create a new Appwrite project.
Add the custom domain (vulnerable.example.com) in the Appwrite dashboard.
Verify ownership through DNS.
If it is vulnerable, the domain will change to the appwrite login page when accessed.
Documentation
https://appwrite.io/docs/advanced/platform/custom-domains
The text was updated successfully, but these errors were encountered: