DynaDot, a registrar of about 55,000 domains, apparently has a very skimpy security system. I was managing a domain of mine when I decided to experiment with the URL. I found that you can get any domain you want, with a few clicks.
Seriously… 55,000 domains registered and they have such a fundamental security mistake as this? I could probably feel sorry for them if they had a JavaScript exploit or a 1000 character hack in the URL… but switching the ID number of the registered domain and gaining complete access? That’s just stupidity.
DynaDot coders – for shame.
Share this with friends:
Like what you've just read? Share it to your friends using your favourite service below:
Comments:
Add a Comment: