Subdomain Takeover Pointing To Wpmudev

  • Reported to Private
  • Reported by Haqtify
  • Low (2.2)
  • $200
  • Published 2 years ago
  • 1 Like



Haqtify recently found a Subdomain takeover vulnerability pointing to Wpmudev . Subdomain takeover vulnerabilities take place when a subdomain ( is pointing to a 3rd party service (e.g. Shopify, Wpmudev, GitHub pages, Heroku, etc.) that has been removed or expired.

Steps To Reproduce:

1.Create a trial account on Wpmudev.


2.After creating account , goto Domain section.

3.Add vulnerable domain in it.


4.Domain Takeover successfully.


  • Remove the affected DNS record.
  • Claim the subdomain.

Previous Articles :