doctolib-public-bug-bounty-program

RawAI Enhanced

In Scope

Out of Scope

In-Scope Assets (9)

Asset	Category	Bounty	Quick Links
*.doctolib.(fr\|de\|it\|com\|net)	URL	Yes	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
*.siilo.com	OTHER	Yes	-
Special scenarios (see description)	URL	Yes	-
http://play.google.com/store/apps/details?id=fr.doctolib.www	ANDROID	Yes	Play Store APKPure APKMirror
https://apps.apple.com/fr/app/doctolib/id925339063	IOS	Yes	-
https://apps.apple.com/ie/app/doctolib-siilo/id1083002150	IOS	Yes	-
https://play.google.com/store/apps/details?id=com.siilo.android&hl=en	ANDROID	Yes	Play Store APKPure APKMirror
pro.doctolib.(fr\|de\|it) (see "Free features for healthcare professionals"))	URL	Yes	-
www.doctolib.(fr\|de\|it)	URL	Yes	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa

Out-of-Scope Assets (9)

Asset	Category	Bounty
Craft CMS on www.siilo.com	OTHER	Yes
Note: should you discover a critical issue within an asset that falls outside the program's scope, we would appreciate it and may choose to offer a reward at our discretion.	OTHER	Yes
community.doctolib.com\|.fr\|.de\|.it	OTHER	Yes
doctocommit.doctolib.fr	OTHER	Yes
doctolib.atlassian.net	OTHER	Yes
doctolib.zendesk.com	OTHER	Yes
share.doctolib.net	OTHER	Yes
store.doctolib.com	OTHER	Yes
vettore.it (and any related Vettore assets)	OTHER	Yes

Scope Changes (85)

Feb 25, 2026

Change	Asset	Category	Scope	Time
Added	https://apps.apple.com/fr/app/doctolib/id925339063	IOS	In Scope	19:08
Added	special scenarios (see description)	URL	In Scope	19:08
Added	community.doctolib.com\|.fr\|.de\|.it	URL	Out of Scope	19:08
Added	community.doctolib.com\|.fr\|.de\|.it	URL	Out of Scope	19:08
Added	community.doctolib.com\|.fr\|.de\|.it	URL	Out of Scope	19:08
Added	community.doctolib.com\|.fr\|.de\|.it	URL	Out of Scope	19:08
Added	doctolib.atlassian.net	URL	Out of Scope	19:08
Added	craft cms on www.siilo.com	OTHER	Out of Scope	19:08
Added	pro.doctolib.(fr\|de\|it) (see "free features for healthcare professionals"))	URL	In Scope	19:08
Added	pro.doctolib.(fr\|de\|it) (see "free features for healthcare professionals"))	URL	In Scope	19:08
Added	pro.doctolib.(fr\|de\|it) (see "free features for healthcare professionals"))	URL	In Scope	19:08
Added	*.doctolib.(fr\|de\|it\|com\|net)	WILDCARD	In Scope	19:08
Added	*.doctolib.(fr\|de\|it\|com\|net)	WILDCARD	In Scope	19:08
Added	*.doctolib.(fr\|de\|it\|com\|net)	WILDCARD	In Scope	19:08
Added	*.doctolib.(fr\|de\|it\|com\|net)	WILDCARD	In Scope	19:08
Added	*.doctolib.(fr\|de\|it\|com\|net)	WILDCARD	In Scope	19:08
Added	http://play.google.com/store/apps/details?id=fr.doctolib.www	ANDROID	In Scope	19:08
Added	*.siilo.com	WILDCARD	In Scope	19:08
Added	https://apps.apple.com/ie/app/doctolib-siilo/id1083002150	IOS	In Scope	19:08
Added	https://play.google.com/store/apps/details?id=com.siilo.android&hl=en	ANDROID	In Scope	19:08
Added	store.doctolib.com	URL	Out of Scope	19:08
Added	share.doctolib.net	URL	Out of Scope	19:08
Added	www.doctolib.(fr\|de\|it)	URL	In Scope	19:08
Added	www.doctolib.(fr\|de\|it)	URL	In Scope	19:08
Added	www.doctolib.(fr\|de\|it)	URL	In Scope	19:08
Added	note: should you discover a critical issue within an asset that falls outside the program's scope, we would appreciate it and may choose to offer a reward at our discretion	OTHER	Out of Scope	19:08
Added	doctocommit.doctolib.fr	URL	Out of Scope	19:08
Added	doctolib.zendesk.com	URL	Out of Scope	19:08
Added	vettore.it (and any related vettore assets)	URL	Out of Scope	19:08

Feb 22, 2026

Change	Asset	Category	Scope	Time
Added	http://play.google.com/store/apps/details?id=fr.doctolib.www	ANDROID	In Scope	00:51
Added	pro.doctolib.(fr\|de\|it) (see "free features for healthcare professionals"))	URL	In Scope	00:51
Added	pro.doctolib.(fr\|de\|it) (see "free features for healthcare professionals"))	URL	In Scope	00:51
Added	*.siilo.com	WILDCARD	In Scope	00:51
Added	https://play.google.com/store/apps/details?id=com.siilo.android&hl=en	ANDROID	In Scope	00:51
Added	vettore.it (and any related vettore assets)	URL	Out of Scope	00:51
Added	special scenarios (see description)	URL	In Scope	00:51
Added	*.doctolib.(fr\|de\|it\|com\|net)	WILDCARD	In Scope	00:51
Added	*.doctolib.(fr\|de\|it\|com\|net)	WILDCARD	In Scope	00:51
Added	*.doctolib.(fr\|de\|it\|com\|net)	WILDCARD	In Scope	00:51
Added	*.doctolib.(fr\|de\|it\|com\|net)	WILDCARD	In Scope	00:51
Added	*.doctolib.(fr\|de\|it\|com\|net)	WILDCARD	In Scope	00:51
Added	www.doctolib.(fr\|de\|it)	URL	In Scope	00:51
Added	www.doctolib.(fr\|de\|it)	URL	In Scope	00:51
Added	www.doctolib.(fr\|de\|it)	URL	In Scope	00:51
Added	doctolib.atlassian.net	URL	Out of Scope	00:51
Added	doctolib.zendesk.com	URL	Out of Scope	00:51
Added	craft cms on www.siilo.com	URL	Out of Scope	00:51
Added	https://apps.apple.com/fr/app/doctolib/id925339063	IOS	In Scope	00:51
Added	https://apps.apple.com/ie/app/doctolib-siilo/id1083002150	IOS	In Scope	00:51
Added	note: should you discover a critical issue within an asset that falls outside the program's scope, we would appreciate it and may choose to offer a reward at our discretion	OTHER	Out of Scope	00:51
Added	community.doctolib.com\|.fr\|.de\|.it	URL	Out of Scope	00:51
Added	community.doctolib.com\|.fr\|.de\|.it	URL	Out of Scope	00:51
Added	community.doctolib.com\|.fr\|.de\|.it	URL	Out of Scope	00:51
Added	community.doctolib.com\|.fr\|.de\|.it	URL	Out of Scope	00:51
Added	doctocommit.doctolib.fr	URL	Out of Scope	00:51
Added	store.doctolib.com	URL	Out of Scope	00:51
Added	share.doctolib.net	URL	Out of Scope	00:51
Added	pro.doctolib.(fr\|de\|it) (see "free features for healthcare professionals"))	URL	In Scope	00:51

Feb 21, 2026

Change	Asset	Category	Scope	Time
Removed	pro.doctolib.(fr\|de\|it) (see "free features for healthcare professionals"))	URL	In Scope	21:40
Removed	special scenarios (see description)	URL	In Scope	21:40
Removed	*.doctolib.(fr\|de\|it\|com\|net)	URL	In Scope	21:40
Removed	https://apps.apple.com/fr/app/doctolib/id925339063	IOS	In Scope	21:40
Removed	http://play.google.com/store/apps/details?id=fr.doctolib.www	ANDROID	In Scope	21:40
Removed	*.siilo.com	OTHER	In Scope	21:40
Removed	https://apps.apple.com/ie/app/doctolib-siilo/id1083002150	IOS	In Scope	21:40
Removed	https://play.google.com/store/apps/details?id=com.siilo.android&hl=en	ANDROID	In Scope	21:40
Removed	note: should you discover a critical issue within an asset that falls outside the program's scope, we would appreciate it and may choose to offer a reward at our discretion	OTHER	Out of Scope	21:40
Removed	community.doctolib.com\|.fr\|.de\|.it	OTHER	Out of Scope	21:40
Removed	doctocommit.doctolib.fr	OTHER	Out of Scope	21:40
Removed	doctolib.atlassian.net	OTHER	Out of Scope	21:40
Removed	doctolib.zendesk.com	OTHER	Out of Scope	21:40
Removed	store.doctolib.com	OTHER	Out of Scope	21:40
Removed	share.doctolib.net	OTHER	Out of Scope	21:40
Removed	vettore.it (and any related vettore assets)	OTHER	Out of Scope	21:40
Removed	craft cms on www.siilo.com	OTHER	Out of Scope	21:40
Removed	www.doctolib.(fr\|de\|it)	URL	In Scope	21:40
Added	note: should you discover a critical issue within an asset that falls outside the program's scope, we would appreciate it and may choose to offer a reward at our discretion	OTHER	Out of Scope	00:33
Added	community.doctolib.com\|.fr\|.de\|.it	OTHER	Out of Scope	00:33
Added	doctocommit.doctolib.fr	OTHER	Out of Scope	00:33
Added	doctolib.atlassian.net	OTHER	Out of Scope	00:33
Added	doctolib.zendesk.com	OTHER	Out of Scope	00:33
Added	store.doctolib.com	OTHER	Out of Scope	00:33
Added	share.doctolib.net	OTHER	Out of Scope	00:33
Added	vettore.it (and any related vettore assets)	OTHER	Out of Scope	00:33
Added	craft cms on www.siilo.com	OTHER	Out of Scope	00:33