doctolib-public-bug-bounty-program
9
In Scope
27
Out of Scope
In-Scope Assets (9)
| Asset | Category | Bounty | Quick Links | |
|---|---|---|---|---|
| *.doctolib.(fr|de|it|com|net) | URL | Yes | ||
| *.siilo.com | OTHER | Yes | - | |
| Special scenarios (see description) | URL | Yes | - | |
| http://play.google.com/store/apps/details?id=fr.doctolib.www | ANDROID | Yes | ||
| https://apps.apple.com/fr/app/doctolib/id925339063 | IOS | Yes | - | |
| https://apps.apple.com/ie/app/doctolib-siilo/id1083002150 | IOS | Yes | - | |
| https://play.google.com/store/apps/details?id=com.siilo.android&hl=en | ANDROID | Yes | ||
| pro.doctolib.(fr|de|it) (see "Free features for healthcare professionals")) | URL | Yes | - | |
| www.doctolib.(fr|de|it) | URL | Yes |
Out-of-Scope Assets (27)
| Asset | Category | Bounty | |
|---|---|---|---|
| Any *.sslip.io, *.nip.io, AWS ELB / load-balancer hostname, or raw IPv4 / IPv6 address | OTHER | Yes | |
| Craft CMS on www.siilo.com, plus siilo.com marketing / staging sub-domains (l.siilo.com, l-dev.siilo.com, web.siilo.com, web-dev.siilo.com, www-admin.siilo.com, mjt-dev.siilo.com, att-dev-nl.siilo.com, sandbox-nl.siilo.com, connect.siilo.com, prod-nl-web.siilo.com) | OTHER | Yes | |
| Look-alike, typo-squatting or expired domains not owned by Doctolib (e.g. www.dioctolib.de, doctolib.fr.evil.com, doctodketest.tk, doctolib-poc.partner-experience.com) | OTHER | Yes | |
| Note: should you discover a critical issue within an asset that falls outside the program's scope, we would appreciate it and may choose to offer a reward at our discretion. | OTHER | Yes | |
| Public GitHub repositories we do not own (such as student projects doing) | OTHER | Yes | |
| There is no IDOR on /api/security/tanker_groups via subject_id | OTHER | Yes | |
| Third-party assets linked from our products (e.g. login.decathlon.net, wallet.esw.esante.gouv.fr, preprod.alaxione.fr, hooks.zapier.com, cron.signitic.app, job-boards.greenhouse.io, docto.digitalstack.it, and any hospital-specific or customer-specific host) | OTHER | Yes | |
| api.tanker.io (Accessing the tanker private key is normal functioning of the Tanker protocol) | OTHER | Yes | |
| billing-client-logs.billing.doctolib.fr | api-external.datascience.doctolibdata.com | OTHER | Yes | |
| community.doctolib.com | .fr | .de | .it | OTHER | Yes | |
| developers.doctolib.com | OTHER | Yes | |
| dmp.doctolib.fr | dmp-prd-aws-*.doctolib.fr | OTHER | Yes | |
| doctocommit.doctolib.fr | OTHER | Yes | |
| doctolib-ps-ehr-downloads.s3.amazonaws.com | OTHER | Yes | |
| doctolib.atlassian.net and any *.atlassian.net path | OTHER | Yes | |
| doctolib.zendesk.com | siilo.zendesk.com | OTHER | Yes | |
| exceptions.doctolib.fr | .de | OTHER | Yes | |
| fb.doctolib.com | fb-dev.doctolib.fr | OTHER | Yes | |
| fm.doctolib.fr | fm.doctolib.it | voip.doctolib.de and other decommissioned / dangling Doctolib sub-domains | OTHER | Yes | |
| info.doctolib.com | .fr | .de | .it | OTHER | Yes | |
| media.doctolib.com | OTHER | Yes | |
| partners.doctolib.fr | partnerportal.doctolib.com | partnerprogram.doctolib.com | OTHER | Yes | |
| pro-app.doctolib.com | OTHER | Yes | |
| share.doctolib.net | OTHER | Yes | |
| status.doctolib.com | .fr | .it | OTHER | Yes | |
| store.doctolib.com | OTHER | Yes | |
| vettore.it and any related Vettore assets | OTHER | Yes |
Scope Changes (170)
Apr 29, 2026
| Change | Asset | Category | Scope | Time |
|---|---|---|---|---|
| Added | there is no idor on /api/security/tanker_groups via subject_id | OTHER | Out of Scope | 09:26 |
| Added | there is no idor on /api/security/tanker_groups via subject_id | OTHER | Out of Scope | 09:26 |
Apr 22, 2026
| Change | Asset | Category | Scope | Time |
|---|---|---|---|---|
| Added | status.doctolib.com | .fr | .it | OTHER | Out of Scope | 15:21 |
| Added | media.doctolib.com | OTHER | Out of Scope | 15:21 |
| Added | fb.doctolib.com | fb-dev.doctolib.fr | OTHER | Out of Scope | 15:21 |
| Added | pro-app.doctolib.com | OTHER | Out of Scope | 15:21 |
| Added | developers.doctolib.com | OTHER | Out of Scope | 15:21 |
| Added | partners.doctolib.fr | partnerportal.doctolib.com | partnerprogram.doctolib.com | OTHER | Out of Scope | 15:21 |
| Added | dmp.doctolib.fr | dmp-prd-aws-*.doctolib.fr | OTHER | Out of Scope | 15:21 |
| Added | fm.doctolib.fr | fm.doctolib.it | voip.doctolib.de and other decommissioned / dangling doctolib sub-domains | OTHER | Out of Scope | 15:21 |
| Added | doctolib.atlassian.net and any *.atlassian.net path | OTHER | Out of Scope | 15:21 |
| Added | doctolib.zendesk.com | siilo.zendesk.com | OTHER | Out of Scope | 15:21 |
| Added | api.tanker.io (accessing the tanker private key is normal functioning of the tanker protocol) | OTHER | Out of Scope | 15:21 |
| Added | exceptions.doctolib.fr | .de | OTHER | Out of Scope | 15:21 |
| Added | billing-client-logs.billing.doctolib.fr | api-external.datascience.doctolibdata.com | OTHER | Out of Scope | 15:21 |
| Added | doctolib-ps-ehr-downloads.s3.amazonaws.com | OTHER | Out of Scope | 15:21 |
| Added | vettore.it and any related vettore assets | OTHER | Out of Scope | 15:21 |
| Added | craft cms on www.siilo.com, plus siilo.com marketing / staging sub-domains (l.siilo.com, l-dev.siilo.com, web.siilo.com, web-dev.siilo.com, www-admin.siilo.com, mjt-dev.siilo.com, att-dev-nl.siilo.com, sandbox-nl.siilo.com, connect.siilo.com, prod-nl-web.siilo.com) | OTHER | Out of Scope | 15:21 |
| Added | third-party assets linked from our products (e.g. login.decathlon.net, wallet.esw.esante.gouv.fr, preprod.alaxione.fr, hooks.zapier.com, cron.signitic.app, job-boards.greenhouse.io, docto.digitalstack.it, and any hospital-specific or customer-specific host) | OTHER | Out of Scope | 15:21 |
| Added | any *.sslip.io, *.nip.io, aws elb / load-balancer hostname, or raw ipv4 / ipv6 address | OTHER | Out of Scope | 15:21 |
| Added | look-alike, typo-squatting or expired domains not owned by doctolib (e.g. www.dioctolib.de, doctolib.fr.evil.com, doctodketest.tk, doctolib-poc.partner-experience.com) | OTHER | Out of Scope | 15:21 |
| Added | public github repositories we do not own (such as student projects doing) | OTHER | Out of Scope | 15:21 |
| Removed | community.doctolib.com|.fr|.de|.it | OTHER | Out of Scope | 15:21 |
| Removed | doctolib.zendesk.com | OTHER | Out of Scope | 15:21 |
| Removed | vettore.it (and any related vettore assets) | OTHER | Out of Scope | 15:21 |
| Removed | doctolib.atlassian.net | OTHER | Out of Scope | 15:21 |
| Removed | craft cms on www.siilo.com | OTHER | Out of Scope | 15:21 |
| Added | pro-app.doctolib.com | OTHER | Out of Scope | 15:21 |
| Added | developers.doctolib.com | OTHER | Out of Scope | 15:21 |
| Added | api.tanker.io (accessing the tanker private key is normal functioning of the tanker protocol) | OTHER | Out of Scope | 15:21 |
| Added | community.doctolib.com | .fr | .de | .it | OTHER | Out of Scope | 15:21 |
| Added | any *.sslip.io, *.nip.io, aws elb / load-balancer hostname, or raw ipv4 / ipv6 address | WILDCARD | Out of Scope | 15:21 |
| Added | any *.sslip.io, *.nip.io, aws elb / load-balancer hostname, or raw ipv4 / ipv6 address | WILDCARD | Out of Scope | 15:21 |
| Added | any *.sslip.io, *.nip.io, aws elb / load-balancer hostname, or raw ipv4 / ipv6 address | WILDCARD | Out of Scope | 15:21 |
| Added | any *.sslip.io, *.nip.io, aws elb / load-balancer hostname, or raw ipv4 / ipv6 address | WILDCARD | Out of Scope | 15:21 |
| Added | doctolib.atlassian.net and any *.atlassian.net path | OTHER | Out of Scope | 15:21 |
| Added | doctolib.atlassian.net and any *.atlassian.net path | OTHER | Out of Scope | 15:21 |
| Added | info.doctolib.com | .fr | .de | .it | OTHER | Out of Scope | 15:21 |
| Added | info.doctolib.com | .fr | .de | .it | OTHER | Out of Scope | 15:21 |
| Added | info.doctolib.com | .fr | .de | .it | OTHER | Out of Scope | 15:21 |
| Added | info.doctolib.com | .fr | .de | .it | OTHER | Out of Scope | 15:21 |
| Added | fm.doctolib.fr | fm.doctolib.it | voip.doctolib.de and other decommissioned / dangling doctolib sub-domains | OTHER | Out of Scope | 15:21 |
| Added | fm.doctolib.fr | fm.doctolib.it | voip.doctolib.de and other decommissioned / dangling doctolib sub-domains | OTHER | Out of Scope | 15:21 |
| Added | fm.doctolib.fr | fm.doctolib.it | voip.doctolib.de and other decommissioned / dangling doctolib sub-domains | OTHER | Out of Scope | 15:21 |
| Added | fm.doctolib.fr | fm.doctolib.it | voip.doctolib.de and other decommissioned / dangling doctolib sub-domains | OTHER | Out of Scope | 15:21 |
| Added | doctolib.zendesk.com | siilo.zendesk.com | OTHER | Out of Scope | 15:21 |
| Added | doctolib.zendesk.com | siilo.zendesk.com | OTHER | Out of Scope | 15:21 |
| Added | exceptions.doctolib.fr | .de | OTHER | Out of Scope | 15:21 |
| Added | exceptions.doctolib.fr | .de | OTHER | Out of Scope | 15:21 |
| Added | doctolib-ps-ehr-downloads.s3.amazonaws.com | OTHER | Out of Scope | 15:21 |
| Added | vettore.it and any related vettore assets | OTHER | Out of Scope | 15:21 |
| Added | vettore.it and any related vettore assets | OTHER | Out of Scope | 15:21 |
| Added | status.doctolib.com | .fr | .it | OTHER | Out of Scope | 15:21 |
| Added | status.doctolib.com | .fr | .it | OTHER | Out of Scope | 15:21 |
| Added | status.doctolib.com | .fr | .it | OTHER | Out of Scope | 15:21 |
| Added | look-alike, typo-squatting or expired domains not owned by doctolib (e.g. www.dioctolib.de, doctolib.fr.evil.com, doctodketest.tk, doctolib-poc.partner-experience.com) | OTHER | Out of Scope | 15:21 |
| Added | public github repositories we do not own (such as student projects doing) | OTHER | Out of Scope | 15:21 |
| Added | partners.doctolib.fr | partnerportal.doctolib.com | partnerprogram.doctolib.com | OTHER | Out of Scope | 15:21 |
| Added | partners.doctolib.fr | partnerportal.doctolib.com | partnerprogram.doctolib.com | OTHER | Out of Scope | 15:21 |
| Added | partners.doctolib.fr | partnerportal.doctolib.com | partnerprogram.doctolib.com | OTHER | Out of Scope | 15:21 |
| Added | billing-client-logs.billing.doctolib.fr | api-external.datascience.doctolibdata.com | OTHER | Out of Scope | 15:21 |
| Added | billing-client-logs.billing.doctolib.fr | api-external.datascience.doctolibdata.com | OTHER | Out of Scope | 15:21 |
| Added | community.doctolib.com | .fr | .de | .it | OTHER | Out of Scope | 15:21 |
| Added | community.doctolib.com | .fr | .de | .it | OTHER | Out of Scope | 15:21 |
| Added | community.doctolib.com | .fr | .de | .it | OTHER | Out of Scope | 15:21 |
| Added | community.doctolib.com | .fr | .de | .it | OTHER | Out of Scope | 15:21 |
| Added | fb.doctolib.com | fb-dev.doctolib.fr | OTHER | Out of Scope | 15:21 |
| Added | fb.doctolib.com | fb-dev.doctolib.fr | OTHER | Out of Scope | 15:21 |
| Added | media.doctolib.com | OTHER | Out of Scope | 15:21 |
| Added | dmp.doctolib.fr | dmp-prd-aws-*.doctolib.fr | OTHER | Out of Scope | 15:21 |
| Added | dmp.doctolib.fr | dmp-prd-aws-*.doctolib.fr | OTHER | Out of Scope | 15:21 |
| Added | craft cms on www.siilo.com, plus siilo.com marketing / staging sub-domains (l.siilo.com, l-dev.siilo.com, web.siilo.com, web-dev.siilo.com, www-admin.siilo.com, mjt-dev.siilo.com, att-dev-nl.siilo.com, sandbox-nl.siilo.com, connect.siilo.com, prod-nl-web.siilo.com) | OTHER | Out of Scope | 15:21 |
| Added | craft cms on www.siilo.com, plus siilo.com marketing / staging sub-domains (l.siilo.com, l-dev.siilo.com, web.siilo.com, web-dev.siilo.com, www-admin.siilo.com, mjt-dev.siilo.com, att-dev-nl.siilo.com, sandbox-nl.siilo.com, connect.siilo.com, prod-nl-web.siilo.com) | OTHER | Out of Scope | 15:21 |
| Added | craft cms on www.siilo.com, plus siilo.com marketing / staging sub-domains (l.siilo.com, l-dev.siilo.com, web.siilo.com, web-dev.siilo.com, www-admin.siilo.com, mjt-dev.siilo.com, att-dev-nl.siilo.com, sandbox-nl.siilo.com, connect.siilo.com, prod-nl-web.siilo.com) | OTHER | Out of Scope | 15:21 |
| Added | craft cms on www.siilo.com, plus siilo.com marketing / staging sub-domains (l.siilo.com, l-dev.siilo.com, web.siilo.com, web-dev.siilo.com, www-admin.siilo.com, mjt-dev.siilo.com, att-dev-nl.siilo.com, sandbox-nl.siilo.com, connect.siilo.com, prod-nl-web.siilo.com) | OTHER | Out of Scope | 15:21 |
| Added | craft cms on www.siilo.com, plus siilo.com marketing / staging sub-domains (l.siilo.com, l-dev.siilo.com, web.siilo.com, web-dev.siilo.com, www-admin.siilo.com, mjt-dev.siilo.com, att-dev-nl.siilo.com, sandbox-nl.siilo.com, connect.siilo.com, prod-nl-web.siilo.com) | OTHER | Out of Scope | 15:21 |
| Added | craft cms on www.siilo.com, plus siilo.com marketing / staging sub-domains (l.siilo.com, l-dev.siilo.com, web.siilo.com, web-dev.siilo.com, www-admin.siilo.com, mjt-dev.siilo.com, att-dev-nl.siilo.com, sandbox-nl.siilo.com, connect.siilo.com, prod-nl-web.siilo.com) | OTHER | Out of Scope | 15:21 |
| Added | craft cms on www.siilo.com, plus siilo.com marketing / staging sub-domains (l.siilo.com, l-dev.siilo.com, web.siilo.com, web-dev.siilo.com, www-admin.siilo.com, mjt-dev.siilo.com, att-dev-nl.siilo.com, sandbox-nl.siilo.com, connect.siilo.com, prod-nl-web.siilo.com) | OTHER | Out of Scope | 15:21 |
| Added | craft cms on www.siilo.com, plus siilo.com marketing / staging sub-domains (l.siilo.com, l-dev.siilo.com, web.siilo.com, web-dev.siilo.com, www-admin.siilo.com, mjt-dev.siilo.com, att-dev-nl.siilo.com, sandbox-nl.siilo.com, connect.siilo.com, prod-nl-web.siilo.com) | OTHER | Out of Scope | 15:21 |
| Added | craft cms on www.siilo.com, plus siilo.com marketing / staging sub-domains (l.siilo.com, l-dev.siilo.com, web.siilo.com, web-dev.siilo.com, www-admin.siilo.com, mjt-dev.siilo.com, att-dev-nl.siilo.com, sandbox-nl.siilo.com, connect.siilo.com, prod-nl-web.siilo.com) | OTHER | Out of Scope | 15:21 |
| Added | craft cms on www.siilo.com, plus siilo.com marketing / staging sub-domains (l.siilo.com, l-dev.siilo.com, web.siilo.com, web-dev.siilo.com, www-admin.siilo.com, mjt-dev.siilo.com, att-dev-nl.siilo.com, sandbox-nl.siilo.com, connect.siilo.com, prod-nl-web.siilo.com) | OTHER | Out of Scope | 15:21 |
| Added | craft cms on www.siilo.com, plus siilo.com marketing / staging sub-domains (l.siilo.com, l-dev.siilo.com, web.siilo.com, web-dev.siilo.com, www-admin.siilo.com, mjt-dev.siilo.com, att-dev-nl.siilo.com, sandbox-nl.siilo.com, connect.siilo.com, prod-nl-web.siilo.com) | OTHER | Out of Scope | 15:21 |
| Added | craft cms on www.siilo.com, plus siilo.com marketing / staging sub-domains (l.siilo.com, l-dev.siilo.com, web.siilo.com, web-dev.siilo.com, www-admin.siilo.com, mjt-dev.siilo.com, att-dev-nl.siilo.com, sandbox-nl.siilo.com, connect.siilo.com, prod-nl-web.siilo.com) | OTHER | Out of Scope | 15:21 |
| Added | third-party assets linked from our products (e.g. login.decathlon.net, wallet.esw.esante.gouv.fr, preprod.alaxione.fr, hooks.zapier.com, cron.signitic.app, job-boards.greenhouse.io, docto.digitalstack.it, and any hospital-specific or customer-specific host) | OTHER | Out of Scope | 15:21 |
| Added | info.doctolib.com | .fr | .de | .it | OTHER | Out of Scope | 15:21 |
Feb 25, 2026
| Change | Asset | Category | Scope | Time |
|---|---|---|---|---|
| Added | vettore.it (and any related vettore assets) | URL | Out of Scope | 19:08 |
| Added | pro.doctolib.(fr|de|it) (see "free features for healthcare professionals")) | URL | In Scope | 19:08 |
| Added | *.doctolib.(fr|de|it|com|net) | WILDCARD | In Scope | 19:08 |
| Added | *.doctolib.(fr|de|it|com|net) | WILDCARD | In Scope | 19:08 |
| Added | *.doctolib.(fr|de|it|com|net) | WILDCARD | In Scope | 19:08 |
| Added | *.doctolib.(fr|de|it|com|net) | WILDCARD | In Scope | 19:08 |
| Added | *.doctolib.(fr|de|it|com|net) | WILDCARD | In Scope | 19:08 |
| Added | http://play.google.com/store/apps/details?id=fr.doctolib.www | ANDROID | In Scope | 19:08 |
| Added | *.siilo.com | WILDCARD | In Scope | 19:08 |
| Added | https://apps.apple.com/ie/app/doctolib-siilo/id1083002150 | IOS | In Scope | 19:08 |
| Added | https://play.google.com/store/apps/details?id=com.siilo.android&hl=en | ANDROID | In Scope | 19:08 |
| Added | store.doctolib.com | URL | Out of Scope | 19:08 |
| Added | share.doctolib.net | URL | Out of Scope | 19:08 |
| Added | www.doctolib.(fr|de|it) | URL | In Scope | 19:08 |
| Added | www.doctolib.(fr|de|it) | URL | In Scope | 19:08 |
| Added | www.doctolib.(fr|de|it) | URL | In Scope | 19:08 |
| Added | note: should you discover a critical issue within an asset that falls outside the program's scope, we would appreciate it and may choose to offer a reward at our discretion | OTHER | Out of Scope | 19:08 |
| Added | doctocommit.doctolib.fr | URL | Out of Scope | 19:08 |
| Added | doctolib.zendesk.com | URL | Out of Scope | 19:08 |
| Added | https://apps.apple.com/fr/app/doctolib/id925339063 | IOS | In Scope | 19:08 |
| Added | special scenarios (see description) | URL | In Scope | 19:08 |
| Added | community.doctolib.com|.fr|.de|.it | URL | Out of Scope | 19:08 |
| Added | community.doctolib.com|.fr|.de|.it | URL | Out of Scope | 19:08 |
| Added | community.doctolib.com|.fr|.de|.it | URL | Out of Scope | 19:08 |
| Added | community.doctolib.com|.fr|.de|.it | URL | Out of Scope | 19:08 |
| Added | doctolib.atlassian.net | URL | Out of Scope | 19:08 |
| Added | craft cms on www.siilo.com | OTHER | Out of Scope | 19:08 |
| Added | pro.doctolib.(fr|de|it) (see "free features for healthcare professionals")) | URL | In Scope | 19:08 |
| Added | pro.doctolib.(fr|de|it) (see "free features for healthcare professionals")) | URL | In Scope | 19:08 |
Feb 22, 2026
| Change | Asset | Category | Scope | Time |
|---|---|---|---|---|
| Added | http://play.google.com/store/apps/details?id=fr.doctolib.www | ANDROID | In Scope | 00:51 |
| Added | *.doctolib.(fr|de|it|com|net) | WILDCARD | In Scope | 00:51 |
| Added | *.doctolib.(fr|de|it|com|net) | WILDCARD | In Scope | 00:51 |
| Added | www.doctolib.(fr|de|it) | URL | In Scope | 00:51 |
| Added | www.doctolib.(fr|de|it) | URL | In Scope | 00:51 |
| Added | www.doctolib.(fr|de|it) | URL | In Scope | 00:51 |
| Added | doctolib.atlassian.net | URL | Out of Scope | 00:51 |
| Added | doctolib.zendesk.com | URL | Out of Scope | 00:51 |
| Added | craft cms on www.siilo.com | URL | Out of Scope | 00:51 |
| Added | https://apps.apple.com/fr/app/doctolib/id925339063 | IOS | In Scope | 00:51 |
| Added | https://apps.apple.com/ie/app/doctolib-siilo/id1083002150 | IOS | In Scope | 00:51 |
| Added | note: should you discover a critical issue within an asset that falls outside the program's scope, we would appreciate it and may choose to offer a reward at our discretion | OTHER | Out of Scope | 00:51 |
| Added | community.doctolib.com|.fr|.de|.it | URL | Out of Scope | 00:51 |
| Added | community.doctolib.com|.fr|.de|.it | URL | Out of Scope | 00:51 |
| Added | community.doctolib.com|.fr|.de|.it | URL | Out of Scope | 00:51 |
| Added | community.doctolib.com|.fr|.de|.it | URL | Out of Scope | 00:51 |
| Added | doctocommit.doctolib.fr | URL | Out of Scope | 00:51 |
| Added | store.doctolib.com | URL | Out of Scope | 00:51 |
| Added | share.doctolib.net | URL | Out of Scope | 00:51 |
| Added | pro.doctolib.(fr|de|it) (see "free features for healthcare professionals")) | URL | In Scope | 00:51 |
| Added | pro.doctolib.(fr|de|it) (see "free features for healthcare professionals")) | URL | In Scope | 00:51 |
| Added | pro.doctolib.(fr|de|it) (see "free features for healthcare professionals")) | URL | In Scope | 00:51 |
| Added | *.siilo.com | WILDCARD | In Scope | 00:51 |
| Added | https://play.google.com/store/apps/details?id=com.siilo.android&hl=en | ANDROID | In Scope | 00:51 |
| Added | vettore.it (and any related vettore assets) | URL | Out of Scope | 00:51 |
| Added | special scenarios (see description) | URL | In Scope | 00:51 |
| Added | *.doctolib.(fr|de|it|com|net) | WILDCARD | In Scope | 00:51 |
| Added | *.doctolib.(fr|de|it|com|net) | WILDCARD | In Scope | 00:51 |
| Added | *.doctolib.(fr|de|it|com|net) | WILDCARD | In Scope | 00:51 |
Feb 21, 2026
| Change | Asset | Category | Scope | Time |
|---|---|---|---|---|
| Removed | pro.doctolib.(fr|de|it) (see "free features for healthcare professionals")) | URL | In Scope | 21:40 |
| Removed | special scenarios (see description) | URL | In Scope | 21:40 |
| Removed | *.doctolib.(fr|de|it|com|net) | URL | In Scope | 21:40 |
| Removed | https://apps.apple.com/fr/app/doctolib/id925339063 | IOS | In Scope | 21:40 |
| Removed | http://play.google.com/store/apps/details?id=fr.doctolib.www | ANDROID | In Scope | 21:40 |
| Removed | *.siilo.com | OTHER | In Scope | 21:40 |
| Removed | https://apps.apple.com/ie/app/doctolib-siilo/id1083002150 | IOS | In Scope | 21:40 |
| Removed | https://play.google.com/store/apps/details?id=com.siilo.android&hl=en | ANDROID | In Scope | 21:40 |
| Removed | note: should you discover a critical issue within an asset that falls outside the program's scope, we would appreciate it and may choose to offer a reward at our discretion | OTHER | Out of Scope | 21:40 |
| Removed | community.doctolib.com|.fr|.de|.it | OTHER | Out of Scope | 21:40 |
| Removed | doctocommit.doctolib.fr | OTHER | Out of Scope | 21:40 |
| Removed | doctolib.atlassian.net | OTHER | Out of Scope | 21:40 |
| Removed | doctolib.zendesk.com | OTHER | Out of Scope | 21:40 |
| Removed | store.doctolib.com | OTHER | Out of Scope | 21:40 |
| Removed | share.doctolib.net | OTHER | Out of Scope | 21:40 |
| Removed | vettore.it (and any related vettore assets) | OTHER | Out of Scope | 21:40 |
| Removed | craft cms on www.siilo.com | OTHER | Out of Scope | 21:40 |
| Removed | www.doctolib.(fr|de|it) | URL | In Scope | 21:40 |
| Added | community.doctolib.com|.fr|.de|.it | OTHER | Out of Scope | 00:33 |
| Added | doctocommit.doctolib.fr | OTHER | Out of Scope | 00:33 |
| Added | doctolib.atlassian.net | OTHER | Out of Scope | 00:33 |
| Added | doctolib.zendesk.com | OTHER | Out of Scope | 00:33 |
| Added | store.doctolib.com | OTHER | Out of Scope | 00:33 |
| Added | share.doctolib.net | OTHER | Out of Scope | 00:33 |
| Added | vettore.it (and any related vettore assets) | OTHER | Out of Scope | 00:33 |
| Added | craft cms on www.siilo.com | OTHER | Out of Scope | 00:33 |
| Added | note: should you discover a critical issue within an asset that falls outside the program's scope, we would appreciate it and may choose to offer a reward at our discretion | OTHER | Out of Scope | 00:33 |