bug-bounty-sncf-connect-1
YesWeHackView on YesWeHack
4
In Scope
8
Out of Scope
In-Scope Assets (4)
| Asset | Category | Quick Links | |
|---|---|---|---|
| https//monidentifiant.sncf | URL | - | |
| https://sncf-connect.com | URL | ||
| https://www.sncf-connect.com | URL | ||
| https://www.sncf-connect.com/bff | URL |
Out-of-Scope Assets (8)
| Asset | Category | |
|---|---|---|
| - https://tgvinoui.sncf/ | OTHER | |
| - https://www.malocationavis.sncf-connect.com/ | OTHER | |
| - https://www.maxjeune-tgvinoui.sncf/ | OTHER | |
| - https://www.sncf-voyageurs.com/ | OTHER | |
| - https://www.sncf.com/ | OTHER | |
| Anything that is not listed as part of the scope, example : | OTHER | |
| Please note sncf-connect.com doesn't own the SNCF.com domains. | OTHER | |
| The SNCF Connect mobile applications (Android and Apple) are out of scope even if the web services they use are in scope (accessible through paths beginning by 'https://www.sncf-connect.com/bff'). | OTHER |