[FALSE-NEGATIVE] Polyfill issue has been fixed by Namecheap #11651
Assignees
Labels
false-negative
Nuclei template missing valid results
Comments
|
@tess-ss, thanks for creating the issue. The exploit no longer appears to be effective, but the reference to the backdoored domain should still be removed. We can adjust the severity accordingly. Let me know if I missed anything. cc @ritikchaddha |
|
Hi @ehsandeep , Appreciate the prompt response, Yes I agree the severity should be reduced, you do highlight a valid point that the following domains should be removed. Thanks, |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Template IDs or paths
https://github.com/projectdiscovery/nuclei-templates/blob/main/http/vulnerabilities/backdoor/polyfill-backdoor.yamlEnvironment
Steps To Reproduce
Hi team,
The following template here which is https://github.com/projectdiscovery/nuclei-templates/blob/main/http/vulnerabilities/backdoor/polyfill-backdoor.yaml is I believe fixed by https://news.ycombinator.com/item?id=40805827 where namecheap has removed the domain, Please let me know if you still think the issue is valid.
Best Regards,
tess
Relevant dumped responses
Anything else?
No response
The text was updated successfully, but these errors were encountered: