otto-de-bug-bounty
YesWeHackView on YesWeHack
10
In Scope
17
Out of Scope
In-Scope Assets (10)
| Asset | Category | Quick Links | |
|---|---|---|---|
| https://apps.apple.com/de/app/otto-shopping-m%C3%B6bel/id404844644 | IOS | - | |
| https://mmp.otto.de | URL | ||
| https://orbidder.otto.de | URL | ||
| https://play.google.com/store/apps/details?id=de.cellular.ottohybrid&hl=de | ANDROID | ||
| https://retail-api.otto.de | URL | ||
| https://supplier-connect.otto.de | URL | ||
| https://teleoptiprd.otto.de | URL | ||
| https://www.lascana.de/ | URL | ||
| https://www.otto.de | URL | ||
| https://www.otto.de/jobs | URL |
Out-of-Scope Assets (17)
| Asset | Category | |
|---|---|---|
| /apps-messenger (the chatbot in general is out of scope) | OTHER | |
| /tracking | OTHER | |
| All domains not listed In-Scope | OTHER | |
| Out-Of-Scope are also other applications hosted under the www.otto.de domain but have a different path, that is not part of our core online shop itself (you will notice, since the design of the page is completely different) | OTHER | |
| Please let us know if you have any questions regarding the scope. | OTHER | |
| Those include but are not limited to (if unsure, contact us before executing the tests): | OTHER | |
| https://keycloak.apps.otto.de | OTHER | |
| https://www.otto.de/clara | OTHER | |
| https://www.otto.de/kundenchat | OTHER | |
| https://www.otto.de/newsroom | OTHER | |
| https://www.otto.de/reblog | OTHER | |
| https://www.otto.de/roombeez | OTHER | |
| https://www.otto.de/soulfully | OTHER | |
| https://www.otto.de/twoforfashion | OTHER | |
| https://www.otto.de/updated | OTHER | |
| https://www.otto.de/user/contactFormSubmit | OTHER | |
| https://www.otto.de/user/sendcallbackrequest | OTHER |