Currently anyone with a wildcard record added to their domain pointing to flash.funnels.msgsndr.com for convenience will be able to add multiple domains into GHL at once without adding those DNS records.

Any bad actor (GHL user) who recognizes this will be able to add multiple domains and could run unethical/illegal services using domains that don't belong to him/her. This is a security loophole and must be resolved immediately.

P.S. There are close to 20 domains of others in our group that have a wildcard DNS record. (could be more) and are vulnerable to this.