Program Removed

This program is no longer available on Bugcrowd. The scope data shown below is historical and may not reflect the final state of the program.

asana

BugcrowdView on Bugcrowd
RawAI Enhanced
20
In Scope
12
Out of Scope
In-Scope Assets (20)
AssetCategoryBountyQuick Links
*.app.asana.comURLYes
*.asana.bizOTHERYes-
app.asana.comWILDCARDYes
asana.bizWILDCARDYes
asana.bizWILDCARDYes
https://app.asana.comURLYes
https://app.asana.comURLYes
https://apps.apple.com/us/app/asana-mobile/id489969512IOSYes-
https://apps.apple.com/us/app/asana-mobile/id489969512IOSYes-
https://asana.comURLYes
https://asana.comURLYes
https://asana.com/apps?category=made-by-asanaURLYes
https://asana.com/apps?category=made-by-asanaURLYes
https://asana.com/downloadURLYes
https://asana.com/downloadOTHERYes-
https://form.asana.comURLYes
https://form.asana.comURLYes
https://play.google.com/store/apps/details?id=com.asana.app&hl=enANDROIDYes
https://play.google.com/store/apps/details?id=com.asana.app&hl=enANDROIDYes
subdomain takeover at *asana.bizOTHERYes-
Out-of-Scope Assets (12)
AssetCategoryBounty
asana.okta.comURLYes
asana.okta.comURLYes
assets.asana.bizURLYes
assets.asana.bizURLYes
forms that you do not ownOTHERYes
forms that you do not ownOTHERYes
jira*.integrations.asana.plusURLYes
jira*.integrations.asana.plusURLYes
other subdomains of asana.comURLYes
other subdomains of asana.comURLYes
social engineering against asana support or asana employeesOTHERYes
social engineering against asana support or asana employeesOTHERYes
Scope Changes (181)
Jun 26, 2026
ChangeAssetCategoryScopeTime
Program Removed06:34
Jun 23, 2026
ChangeAssetCategoryScopeTime
Addedforms that you do not ownOTHEROut of Scope09:32
Addedjira*.integrations.asana.plusURLOut of Scope09:32
Addedhttps://asana.com/downloadURLIn Scope09:32
Addedhttps://asana.com/apps?category=made-by-asanaURLIn Scope09:32
Addedasana.okta.comURLOut of Scope09:32
Addedother subdomains of asana.comURLOut of Scope09:32
Addedsubdomain takeover at *asana.bizWILDCARDIn Scope09:32
Addedhttps://apps.apple.com/us/app/asana-mobile/id489969512IOSIn Scope09:32
Addedhttps://app.asana.comURLIn Scope09:32
Addedassets.asana.bizURLOut of Scope09:32
Added*.app.asana.comWILDCARDIn Scope09:32
Addedhttps://form.asana.comURLIn Scope09:32
Addedhttps://play.google.com/store/apps/details?id=com.asana.app&hl=enANDROIDIn Scope09:32
Addedhttps://asana.comURLIn Scope09:32
Addedsocial engineering against asana support or asana employeesOTHEROut of Scope09:32
Added*.asana.bizWILDCARDIn Scope09:32
Addedforms that you do not ownOTHEROut of Scope09:32
Addedassets.asana.bizURLOut of Scope09:32
Addedasana.okta.comURLOut of Scope09:32
Addedjira*.integrations.asana.plusURLOut of Scope09:32
Addedsocial engineering against asana support or asana employeesOTHEROut of Scope09:32
Addedother subdomains of asana.comURLOut of Scope09:32
Addedsubdomain takeover at *asana.bizOTHERIn Scope09:32
Addedhttps://form.asana.comURLIn Scope09:32
Addedhttps://play.google.com/store/apps/details?id=com.asana.app&hl=enANDROIDIn Scope09:32
Addedhttps://apps.apple.com/us/app/asana-mobile/id489969512IOSIn Scope09:32
Addedhttps://asana.com/downloadOTHERIn Scope09:32
Addedhttps://asana.com/apps?category=made-by-asanaURLIn Scope09:32
Addedhttps://asana.comURLIn Scope09:32
Addedhttps://app.asana.comURLIn Scope09:32
Added*.app.asana.comURLIn Scope09:32
Added*.asana.bizOTHERIn Scope09:32
Program Removed08:41
Added*.asana.bizWILDCARDIn Scope07:31
Addedhttps://app.asana.comURLIn Scope07:31
Addedhttps://asana.comURLIn Scope07:31
Addedhttps://asana.com/apps?category=made-by-asanaURLIn Scope07:31
Addedhttps://asana.com/downloadOTHERIn Scope07:31
Addedhttps://apps.apple.com/us/app/asana-mobile/id489969512IOSIn Scope07:31
Addedhttps://play.google.com/store/apps/details?id=com.asana.app&hl=enANDROIDIn Scope07:31
Addedhttps://form.asana.comURLIn Scope07:31
Added*.app.asana.comURLIn Scope07:31
Added*.asana.bizOTHERIn Scope07:31
Addedother subdomains of asana.comURLOut of Scope07:31
Addedsocial engineering against asana support or asana employeesOTHEROut of Scope07:31
Addedjira*.integrations.asana.plusURLOut of Scope07:31
Addedasana.okta.comURLOut of Scope07:31
Addedassets.asana.bizURLOut of Scope07:31
Addedforms that you do not ownOTHEROut of Scope07:31
Addedhttps://app.asana.comURLIn Scope07:31
Addedhttps://asana.com/apps?category=made-by-asanaURLIn Scope07:31
Addedhttps://form.asana.comURLIn Scope07:31
Added*.app.asana.comWILDCARDIn Scope07:31
Addedsocial engineering against asana support or asana employeesOTHEROut of Scope07:31
Addedjira*.integrations.asana.plusURLOut of Scope07:31
Addedsubdomain takeover at *asana.bizWILDCARDIn Scope07:31
Addedasana.okta.comURLOut of Scope07:31
Addedhttps://asana.com/downloadURLIn Scope07:31
Addedhttps://apps.apple.com/us/app/asana-mobile/id489969512IOSIn Scope07:31
Addedhttps://play.google.com/store/apps/details?id=com.asana.app&hl=enANDROIDIn Scope07:31
Addedassets.asana.bizURLOut of Scope07:31
Addedforms that you do not ownOTHEROut of Scope07:31
Addedhttps://asana.comURLIn Scope07:31
Addedother subdomains of asana.comURLOut of Scope07:31
Addedsubdomain takeover at *asana.bizOTHERIn Scope07:31
Program Removed06:41
Jun 17, 2026
ChangeAssetCategoryScopeTime
Addedhttps://app.asana.comURLIn Scope11:30
Addedassets.asana.bizURLOut of Scope11:30
Addedjira*.integrations.asana.plusURLOut of Scope11:30
Addedhttps://asana.com/apps?category=made-by-asanaURLIn Scope11:30
Addedhttps://app.asana.comURLIn Scope11:30
Addedsocial engineering against asana support or asana employeesOTHEROut of Scope11:30
Addedsubdomain takeover at *asana.bizWILDCARDIn Scope11:30
Added*.app.asana.comWILDCARDIn Scope11:30
Addedhttps://asana.comURLIn Scope11:30
Addedforms that you do not ownOTHEROut of Scope11:30
Addedasana.okta.comURLOut of Scope11:30
Addedother subdomains of asana.comURLOut of Scope11:30
Added*.asana.bizWILDCARDIn Scope11:30
Addedhttps://form.asana.comURLIn Scope11:30
Addedhttps://play.google.com/store/apps/details?id=com.asana.app&hl=enANDROIDIn Scope11:30
Addedhttps://apps.apple.com/us/app/asana-mobile/id489969512IOSIn Scope11:30
Addedhttps://asana.com/downloadURLIn Scope11:30
Addedforms that you do not ownOTHEROut of Scope11:30
Addedassets.asana.bizURLOut of Scope11:30
Addedasana.okta.comURLOut of Scope11:30
Addedjira*.integrations.asana.plusURLOut of Scope11:30
Addedsocial engineering against asana support or asana employeesOTHEROut of Scope11:30
Addedother subdomains of asana.comURLOut of Scope11:30
Addedsubdomain takeover at *asana.bizOTHERIn Scope11:30
Added*.asana.bizOTHERIn Scope11:30
Added*.app.asana.comURLIn Scope11:30
Addedhttps://form.asana.comURLIn Scope11:30
Addedhttps://play.google.com/store/apps/details?id=com.asana.app&hl=enANDROIDIn Scope11:30
Addedhttps://apps.apple.com/us/app/asana-mobile/id489969512IOSIn Scope11:30
Addedhttps://asana.com/apps?category=made-by-asanaURLIn Scope11:30
Addedhttps://asana.comURLIn Scope11:30
Addedhttps://asana.com/downloadOTHERIn Scope11:30
Program Removed10:34
Mar 5, 2026
ChangeAssetCategoryScopeTime
Addedother subdomains of asana.comURLOut of Scope22:28
Addedassets.asana.bizURLOut of Scope22:28
Addedforms that you do not ownOTHEROut of Scope22:28
Addedhttps://form.asana.comURLIn Scope22:28
Added*.asana.bizWILDCARDIn Scope22:28
Addedassets.asana.bizURLOut of Scope22:28
Addedhttps://asana.comURLIn Scope22:28
Added*.app.asana.comWILDCARDIn Scope22:28
Addedsubdomain takeover at *asana.bizWILDCARDIn Scope22:28
Addedsocial engineering against asana support or asana employeesOTHEROut of Scope22:28
Addedjira*.integrations.asana.plusURLOut of Scope22:28
Addedforms that you do not ownOTHEROut of Scope22:28
Addedhttps://asana.com/apps?category=made-by-asanaURLIn Scope22:28
Addedhttps://asana.com/downloadURLIn Scope22:28
Addedhttps://apps.apple.com/us/app/asana-mobile/id489969512IOSIn Scope22:28
Addedasana.okta.comURLOut of Scope22:28
Addedhttps://play.google.com/store/apps/details?id=com.asana.app&hl=enANDROIDIn Scope22:28
Addedhttps://app.asana.comURLIn Scope22:28
Addedhttps://app.asana.comURLIn Scope22:28
Addedhttps://asana.comURLIn Scope22:28
Addedhttps://asana.com/apps?category=made-by-asanaURLIn Scope22:28
Addedhttps://asana.com/downloadOTHERIn Scope22:28
Addedhttps://apps.apple.com/us/app/asana-mobile/id489969512IOSIn Scope22:28
Addedhttps://play.google.com/store/apps/details?id=com.asana.app&hl=enANDROIDIn Scope22:28
Addedhttps://form.asana.comURLIn Scope22:28
Added*.app.asana.comURLIn Scope22:28
Added*.asana.bizOTHERIn Scope22:28
Addedsubdomain takeover at *asana.bizOTHERIn Scope22:28
Addedother subdomains of asana.comURLOut of Scope22:28
Addedsocial engineering against asana support or asana employeesOTHEROut of Scope22:28
Addedjira*.integrations.asana.plusURLOut of Scope22:28
Addedasana.okta.comURLOut of Scope22:28
Feb 25, 2026
ChangeAssetCategoryScopeTime
Addedother subdomains of asana.comURLOut of Scope19:11
Addedhttps://asana.com/downloadURLIn Scope19:11
Added*.app.asana.comWILDCARDIn Scope19:11
Added*.asana.bizWILDCARDIn Scope19:11
Addedsubdomain takeover at *asana.bizWILDCARDIn Scope19:11
Addedhttps://app.asana.comURLIn Scope19:11
Addedhttps://asana.comURLIn Scope19:11
Addedhttps://asana.com/apps?category=made-by-asanaURLIn Scope19:11
Addedhttps://apps.apple.com/us/app/asana-mobile/id489969512IOSIn Scope19:11
Addedhttps://form.asana.comURLIn Scope19:11
Addedassets.asana.bizURLOut of Scope19:11
Addedforms that you do not ownOTHEROut of Scope19:11
Addedhttps://play.google.com/store/apps/details?id=com.asana.app&hl=enANDROIDIn Scope19:11
Addedasana.okta.comURLOut of Scope19:11
Addedjira*.integrations.asana.plusURLOut of Scope19:11
Addedsocial engineering against asana support or asana employeesOTHEROut of Scope19:11
Program Removed17:22
Addedhttps://asana.comURLIn Scope17:00
Addedhttps://asana.com/apps?category=made-by-asanaURLIn Scope17:00
Addedhttps://asana.com/downloadOTHERIn Scope17:00
Addedhttps://apps.apple.com/us/app/asana-mobile/id489969512IOSIn Scope17:00
Addedhttps://play.google.com/store/apps/details?id=com.asana.app&hl=enANDROIDIn Scope17:00
Addedhttps://form.asana.comURLIn Scope17:00
Added*.app.asana.comURLIn Scope17:00
Added*.asana.bizOTHERIn Scope17:00
Addedsubdomain takeover at *asana.bizOTHERIn Scope17:00
Addedother subdomains of asana.comURLOut of Scope17:00
Addedsocial engineering against asana support or asana employeesOTHEROut of Scope17:00
Addedjira*.integrations.asana.plusURLOut of Scope17:00
Addedasana.okta.comURLOut of Scope17:00
Addedassets.asana.bizURLOut of Scope17:00
Addedforms that you do not ownOTHEROut of Scope17:00
Addedhttps://app.asana.comURLIn Scope17:00
Addedforms that you do not ownOTHEROut of Scope17:00
Addedhttps://apps.apple.com/us/app/asana-mobile/id489969512IOSIn Scope17:00
Added*.asana.bizWILDCARDIn Scope17:00
Addedsubdomain takeover at *asana.bizWILDCARDIn Scope17:00
Addedother subdomains of asana.comURLOut of Scope17:00
Addedhttps://asana.com/downloadURLIn Scope17:00
Addedsocial engineering against asana support or asana employeesOTHEROut of Scope17:00
Addedasana.okta.comURLOut of Scope17:00
Addedhttps://app.asana.comURLIn Scope17:00
Addedhttps://asana.comURLIn Scope17:00
Addedhttps://play.google.com/store/apps/details?id=com.asana.app&hl=enANDROIDIn Scope17:00
Addedhttps://asana.com/apps?category=made-by-asanaURLIn Scope17:00
Addedhttps://form.asana.comURLIn Scope17:00
Added*.app.asana.comWILDCARDIn Scope17:00
Addedjira*.integrations.asana.plusURLOut of Scope17:00
Addedassets.asana.bizURLOut of Scope17:00