What is considered a duplicate?
Posted: Thu Jan 11, 2018 5:14 pm
Hi there! I'm fairly new here and have a clarification question regarding duplicates/clones.
If a vulnerability exists on multiple sites with the same domain but different sub-domains and the owner of each site is different, would the submissions be considered duplicates? I assume it would be acceptable as the only way to notify all the site owners is to report each site separately but wanted to confirm that this is the case before I submit.
As an example, I'm referring more to situations like Scenario A than Scenario B.
A) scrubshop.weebly.com
bigbadbully.weebly.com
tastyhushpuppies.weebly.com
B) shop.scrubshop.com
deals.scrubshop.com
jobs.scrubshop.com
If a vulnerability exists on multiple sites with the same domain but different sub-domains and the owner of each site is different, would the submissions be considered duplicates? I assume it would be acceptable as the only way to notify all the site owners is to report each site separately but wanted to confirm that this is the case before I submit.
As an example, I'm referring more to situations like Scenario A than Scenario B.
A) scrubshop.weebly.com
bigbadbully.weebly.com
tastyhushpuppies.weebly.com
B) shop.scrubshop.com
deals.scrubshop.com
jobs.scrubshop.com