Vulnerability Disclosure Program (VDP)

VDPs are meant for responsibly reporting vulnerabilities you encounter — not for actively hunting for fame or reputation. Even if you're just starting out, consider focusing on rewarded bug bounty programs instead.

kohls

BugcrowdView on Bugcrowd
RawAI Enhanced
4
In Scope
29
Out of Scope

In-Scope Assets (4)

AssetCategoryBountyQuick Links
Kohl’s entire public digital footprint that is not Out-Of-Scope(See list below)OTHERNo-
https://www.kohls.comURLNo
https://www.kohls.com/feature/app.jspIOSNo-
https://www.kohls.com/feature/app.jspANDROIDNo-
Out-of-Scope Assets (29)