| + | https://yeswehack.com/programs/dracoon-bug-bounty-program | 12 | 0 | YesWeHack |
In Scope Assets:- URL: https://bounty-cloud.dracoon.app/api
- OTHER: https://bounty-cloud.dracoon.app/oauth
- OTHER: https://0-2744452194.s3.nbg01.de.dracoon.io
- OTHER: https://bounty-cloud.dracoon.app/mediaserver
- URL: https://bounty-cloud.dracoon.app/reporting/api
- OTHER: https://bounty-cloud.dracoon.app/webdav
- URL: https://bounty-cloud.dracoon.app/
- URL: https://bounty-server.dracoon.app/api
- OTHER: https://bounty-server.dracoon.app/oauth
- URL: https://bounty-server.dracoon.app/reporting/api
- OTHER: https://bounty-server.dracoon.app/webdav
- URL: https://bounty-server.dracoon.app/
|
| + | https://yeswehack.com/programs/ezviz-bug-bounty-program | 10 | 0 | YesWeHack |
In Scope Assets:- OTHER: Hardware found on https://www.ezviz.com/category/security-wifi-cameras
- OTHER: Hardware found on https://www.ezviz.com/category/smart-home
- URL: i.ys7.com
- URL: open.ys7.com
- URL: auth.ys7.com
- URL: api.ys7.com
- URL: api.ezvizlife.com
- URL: usauth.ezvizlife.com
- URL: ius.ezvizlife.com
- URL: *.ys7.com
|
| + | https://yeswehack.com/programs/fdj-united-online-betting-gaming-bug-bounty-program | 33 | 0 | YesWeHack |
In Scope Assets:- URL: www.unibet.(com|it|se|co.uk|be|nl|dk|ro|fr|ee|ie|com.au)
- URL: fi.unibet.com
- URL: payment.unibet.(com|it|se|co.uk|be|nl|dk|ro|fr|ee|ie|com.au)
- URL: www.mariacasino.(com|se|ee|dk)
- URL: fi.mariacasino.com
- URL: payment.mariacasino.(com|se|ee|dk)
- URL: int.32red.com
- URL: www.bingo.com
- URL: (se|fi|uk).bingo.com
- URL: payment.bingo.com
- URL: www.ottokasino.com
- URL: en.ottokasino.com
- URL: payment.ottokasino.com
- URL: www.ottocasino.se
- URL: payment.ottocasino.se
- URL: www.kolikkopelit.com
- URL: en.kolikkopelit.com
- URL: payment.kolikkopelit.com
- URL: www.storspiller.com
- URL: payment.storspiller.com
- URL: www.storspelare.se
- URL: payment.storspelare.se
- URL: www.casinohuone.com
- URL: en.casinohuone.com
- URL: payment.casinohuone.com
- URL: www.vladcazino.ro
- URL: payment.vladcazino.ro
- IOS: https://pci.kindredgroup.com
- URL: https://www.32red.com/
- URL: /blog/ endpoints on our sites
- IOS: https://itunes.apple.com/gb/app/unibet-live-sports-betting/id463335337
- IOS: https://itunes.apple.com/gb/app/unibet-casino-slots-games/id905382680
- ANDROID: https://cdn.unicdn.net/apk/UnibetCasino.apk
|
| + | https://yeswehack.com/programs/franceconnect-proconnect-public | 5 | 0 | YesWeHack |
In Scope Assets:- OTHER: Specific scenarios (see program description)
- URL: FranceConnect+ (see program description for github link)
- URL: FranceConnect (see program description for github link)
- URL: eIDAS Bridge (see program description for github link)
- URL: User Dashboard (see program description for github link)
|
| + | https://yeswehack.com/programs/gnome-bug-bounty-program | 3 | 0 | YesWeHack |
In Scope Assets:- OTHER: GLib
- OTHER: glib-networking
- OTHER: libsoup
|
| + | https://yeswehack.com/programs/grw-trading-fze-bug-bounty-program | 3 | 0 | YesWeHack |
In Scope Assets:- OTHER: https://*.grwtrading.com
- URL: https://*.dropxl.com
- URL: https://*.wholesalexl.com
|
| + | https://yeswehack.com/programs/harman-international-public-bug-bounty | 22 | 0 | YesWeHack |
In Scope Assets:- OTHER: Device: JBL Bar 300
- OTHER: Device: JBL Bar 500
- OTHER: Device: JBL Bar 700
- OTHER: Device: JBL Bar 800
- OTHER: Device: JBL Bar 1000
- OTHER: Device: JBL Bar 1300
- URL: events.onecloud.harman.com
- URL: ota.onecloud.harman.com
- URL: apis.onecloud.harman.com
- URL: edgeapis.onecloud.harman.com
- OTHER: Device: JBL Authentics 200
- OTHER: Device: JBL Authentics 300
- OTHER: Device: JBL Authentics 500
- OTHER: Device: JBL Boombox 3 Wi-Fi
- OTHER: Device: JBL Charge 5 Wi-Fi
- OTHER: Device: JBL PartyBox Ultimate
- IOS: https://apps.apple.com/fr/app/jbl-one/id1610239857
- ANDROID: https://play.google.com/store/apps/details?id=com.jbl.oneapp&hl=fr&gl=US
- OTHER: JBL Flip 6
- OTHER: JBL Charge 5
- URL: https://tms.onecloud.harman.com
- URL: https://quantum-events.onecloud.harman.com
|
| + | https://yeswehack.com/programs/harman-international-web-applications | 11 | 0 | YesWeHack |
In Scope Assets:- URL: *.jbl.com
- URL: *.harmanaudio.com
- URL: *.harmankardon.com
- URL: *.support.jbl.com
- URL: *.jbl.nl
- URL: *.jbl.ru
- URL: *.uk.jbl.com
- URL: *.uk.harmanaudio.com
- URL: *.de.jbl.com
- URL: *.in.jbl.com
- URL: *.jbl.com.br
|
| + | https://yeswehack.com/programs/infomaniak-bug-bounty-program | 36 | 0 | YesWeHack |
In Scope Assets:- URL: *.kdrive.infomaniak.com
- URL: api.infomaniak.com
- URL: login.infomaniak.com
- URL: manager.infomaniak.com/v3/*
- URL: shop.infomaniak.com
- URL: *.kchat.infomaniak.com
- URL: calendar.infomaniak.com
- URL: contacts.infomaniak.com
- URL: etickets.infomaniak.com
- URL: mail.infomaniak.com
- URL: swiss-backup*.infomaniak.com
- URL: vod.infomaniak.com
- URL: *.vod2.infomaniak.com
- URL: player-radio.infomaniak.com
- URL: welcome.infomaniak.com
- URL: www.swisstransfer.com
- URL: www.infomaniak.com
- URL: chk.infomaniak.com
- IOS: ai-tools.infomaniak.com
- URL: kmeet.infomaniak.com
- URL: kpaste.infomaniak.com
- URL: sync.infomaniak.com
- URL: storage*.infomaniak.com
- URL: ix2smbdyjt.infomaniak.site
- URL: 5k8vrbdyje.infomaniak.site
- URL: fv3lfbdyjh.infomaniak.site
- URL: l75pvbdyjo.infomaniak.site
- URL: infomaniak.events
- URL: sms.infomaniak.com
- URL: developer.infomaniak.com
- URL: invitation.infomaniak.com
- ANDROID: https://play.google.com/store/apps/details?id=com.infomaniak.drive
- IOS: https://apps.apple.com/app/infomaniak-kdrive/id1482778676
- APPLICATION: https://github.com/Infomaniak/desktop-kDrive
- IOS: https://apps.apple.com/fr/app/infomaniak-mail/id1622596573
- ANDROID: https://play.google.com/store/apps/details?id=com.infomaniak.mail&hl=en_US
|
| + | https://yeswehack.com/programs/komoju-public-bug-bounty-program | 3 | 0 | YesWeHack |
In Scope Assets:- URL: https://yeswehack.staging.komoju.com
- OTHER: https://multipay-staging.test.komoju.com
- OTHER: https://doc.komoju.com/docs/fields-overview
|
| + | https://yeswehack.com/programs/log4j-bug-bounty-program | 5 | 0 | YesWeHack |
In Scope Assets:- OTHER: Log4j 2.x
- OTHER: Log4j API for Kotlin
- OTHER: Log4j API for Scala
- OTHER: Log4cxx
- OTHER: Log4net
|
| + | https://yeswehack.com/programs/louis-vuitton-malletier-public-bug-bounty-program | 7 | 0 | YesWeHack |
In Scope Assets:- URL: https://[it | fr | us | sg | …].louisvuitton.com
- URL: *.api.louisvuitton.com
- IOS: https://apps.apple.com/fr/app/louis-vuitton/id709101942
- ANDROID: https://play.google.com/store/apps/details?id=com.vuitton.android&hl=fr&gl=US
- IOS: https://appgallery.huawei.com/#/app/C102099703?locale=zh_CN&source=appshare&subsource=C102099703
- IOS: https://apps.apple.com/fr/app/louis-vuitton-city-guide/id1014618396
- URL: https://horizonv2prodapi.azurewebsites.net
|
| + | https://yeswehack.com/programs/matrixalm | 2 | 0 | YesWeHack |
In Scope Assets:- OTHER: hack1.mtrx.ovh
- URL: https://hackme.matrixreq.com
|
| + | https://yeswehack.com/programs/maya-public-bug-bounty-program | 9 | 0 | YesWeHack |
In Scope Assets:- ANDROID: https://play.google.com/store/apps/details?id=com.paymaya
- IOS: https://apps.apple.com/am/app/maya-your-all-in-one-money-app/id991673877
- IOS: https://appgallery.huawei.com/app/C101186357
- URL: https://api.paymaya.com/
- URL: https://pg.paymaya.com
- URL: https://payoutapi.maya.ph/
- URL: https://op.paymaya.com/
- URL: https://connect.paymaya.com/
- URL: https://paymayabiller-prod.paymaya.com/
|
| + | https://yeswehack.com/programs/mon-espace-sante-mes | 34 | 0 | YesWeHack |
In Scope Assets:- URL: www.monespacesante.fr
- URL: admincms.monespacesante.fr
- URL: adminstore.monespacesante.fr
- URL: api.monespacesante.fr
- URL: auth.monespacesante.fr
- URL: cms.monespacesante.fr
- URL: editeur.api.monespacesante.fr
- URL: editeurs.monespacesante.fr
- URL: knowage.monespacesante.fr
- URL: support.monespacesante.fr
- URL: api.editeur.preprod.monespacesante.fr
- URL: api.preprod.monespacesante.fr
- URL: auth.preprod.monespacesante.fr
- URL: preprod.api.monespacesante.fr
- URL: preprod.auth.monespacesante.fr
- URL: preprod.editeur.api.monespacesante.fr
- URL: preprod.monespacesante.fr
- URL: preprod1.monespacesante.fr
- URL: preprod2.monespacesante.fr
- URL: securite.monespacesante.fr
- IOS: am.monespacesante.fr
- IOS: editeur.am.monespacesante.fr
- IOS: am.editeur.preprod.monespacesante.fr
- IOS: am.preprod.monespacesante.fr
- IOS: preprod.am.monespacesante.fr
- IOS: preprod.editeur.am.monespacesante.fr
- URL: www.preprod.monespacesante.fr
- URL: www.preprod1.monespacesante.fr
- URL: www.preprod2.monespacesante.fr
- IOS: www.am.monespacesante.fr
- IOS: www.editeur.am.monespacesante.fr
- URL: www.editeur.api.monespacesante.fr
- IOS: apps.apple.com/fr/app/mon-espace-sant%C3%A9/id1589255019 (iOS)
- ANDROID: play.google.com/store/apps/details?id=fr.assurancemaladie.monespacesante&showAllReviews=true (Android)
|
| + | https://yeswehack.com/programs/moneybox-bug-bounty | 6 | 0 | YesWeHack |
In Scope Assets:- URL: https://api.moneyboxapp.com/
- URL: https://admin.moneyboxapp.org/
- URL: https://admin-roundups.moneyboxapp.org/
- IOS: https://apps.apple.com/gb/app/moneybox-save-and-invest/id1049797239
- ANDROID: https://play.google.com/store/apps/details?id=com.moneyboxapp
- URL: https://sycamore.moneyboxapp.org/
|
| + | https://yeswehack.com/programs/okto-bug-bounty-program | 3 | 0 | YesWeHack |
In Scope Assets:- IOS: https://apps.apple.com/in/app/okto-wallet/id6450688229
- ANDROID: https://play.google.com/store/apps/details?id=com.coindcx.okto
- URL: *.okto.tech
|
| + | https://yeswehack.com/programs/onedoc-sa-bug-bounty-program | 4 | 0 | YesWeHack |
In Scope Assets:- URL: https://www.onedoc.ch
- URL: https://pro.onedoc.ch
- URL: https://api.onedoc.ch
- URL: https://telehealth.onedoc.ch
|
| + | https://yeswehack.com/programs/ooredoo-qpsc-bug-bounty-program | 5 | 0 | YesWeHack |
In Scope Assets:- URL: https://www.ooredoo.qa
- IOS: https://mobile.ooredoo.qa
- URL: https://selfcare.ooredoo.qa
- ANDROID: https://play.google.com/store/apps/details?id=qa.ooredoo.android&hl=en&gl=US
- IOS: https://apps.apple.com/qa/app/ooredoo-qatar/id619828745
|
| + | https://yeswehack.com/programs/openpgp-js-bug-bounty-program | 3 | 0 | YesWeHack |
In Scope Assets:- OTHER: Security Vulnerability in OpenPGP.js's high-level API
- OTHER: Security Vulnerability in the OpenPGP Standard
- OTHER: Interoperability Issue in OpenPGP.js
|
| + | https://yeswehack.com/programs/otto-de-bug-bounty | 11 | 0 | YesWeHack |
In Scope Assets:- URL: https://www.otto.de
- URL: https://www.otto.de/jobs
- ANDROID: https://play.google.com/store/apps/details?id=de.cellular.ottohybrid&hl=de
- IOS: https://apps.apple.com/de/app/otto-shopping-m%C3%B6bel/id404844644
- URL: https://www.lascana.de/
- URL: https://teleoptiprd.otto.de
- URL: https://mmp.otto.de
- URL: https://partnerprogramm.otto.de
- URL: https://orbidder.otto.de
- URL: https://supplier-connect.otto.de
- URL: https://retail-api.otto.de
|
| + | https://yeswehack.com/programs/outscale | 8 | 0 | YesWeHack |
In Scope Assets:- URL: https://cockpit-eu-west-2.outscale.com/
- URL: https://fcu.eu-west-2.outscale.com
- URL: https://lbu.eu-west-2.outscale.com
- URL: https://osu.eu-west-2.outscale.com
- URL: https://eim.eu-west-2.outscale.com
- URL: https://icu.eu-west-2.outscale.com
- URL: https://directlink.eu-west-2.outscale.com
- OTHER: Any resource created or accessed with the Outscale Cloud on eu-west-2 region - created by the Hunter
|
| + | https://yeswehack.com/programs/ovh | 2 | 0 | YesWeHack |
In Scope Assets:- URL: api.ovh.com
- URL: www.ovh.com
|
| + | https://yeswehack.com/programs/owncloud-bug-bounty-program | 22 | 0 | YesWeHack |
In Scope Assets:- APPLICATION: https://owncloud.org/install/#install-clients
- ANDROID: https://play.google.com/store/apps/details?id=com.owncloud.android
- IOS: https://apps.apple.com/app/id1359583808
- OTHER: https://github.com/owncloud/customgroups
- OTHER: https://github.com/owncloud/guests
- OTHER: https://github.com/owncloud/richdocuments
- OTHER: https://github.com/owncloud/notifications
- OTHER: https://github.com/owncloud/client
- OTHER: https://github.com/owncloud/core
- OTHER: https://github.com/owncloud/gallery
- OTHER: https://github.com/owncloud/ocis
- OTHER: https://github.com/owncloud/web
- OTHER: https://github.com/owncloud/web-extensions
- OTHER: https://github.com/owncloud/user_ldap
- OTHER: https://github.com/owncloud/oauth2
- OTHER: https://github.com/owncloud/openidconnect
- OTHER: https://github.com/owncloud/activity
- OTHER: https://github.com/owncloud/impersonate
- OTHER: https://github.com/owncloud/updater
- OTHER: https://github.com/owncloud/core/tree/master/apps/files
- OTHER: https://github.com/owncloud/android
- OTHER: https://github.com/owncloud/ios-app
|
| + | https://yeswehack.com/programs/paddle-com-public-bug-bounty-program | 12 | 0 | YesWeHack |
In Scope Assets:- URL: https://vendors.paddle.com
- URL: https://sandbox-vendors.paddle.com
- URL: https://api.paddle.com
- URL: https://sandbox-api.paddle.com
- URL: https://sandbox-checkout-service.paddle.com
- URL: https://sandbox-buy.paddle.com
- URL: https://paddle.net
- URL: https://customer-portal.paddle.com
- URL: https://login.paddle.com
- URL: https://sandbox-login.paddle.com
- URL: https://www.paddle.com
- URL: https://developer.paddle.com
|
| + | https://yeswehack.com/programs/pendulum-bug-bounty-program | 3 | 0 | YesWeHack |
In Scope Assets:- OTHER: https://github.com/pendulum-project/ntpd-rs
- OTHER: https://github.com/pendulum-project/timestamped-socket
- OTHER: https://github.com/pendulum-project/clock-steering
|
| + | https://yeswehack.com/programs/pine-labs-bug-bounty-program | 27 | 0 | YesWeHack |
In Scope Assets:- URL: https://billingserver.pinelabs.com/
- URL: dashboard.pluralonline.com
- URL: https://lounge.pinelabs.com/loungeui/login
- URL: https://pinepgconsole.in:9099
- URL: analytics.pinelabs.com
- URL: https://myplutus.pinelabs.my/
- URL: trm.pinepaymentsolutions.com
- URL: https://trm.pinelabs.ae
- URL: https://www.pinelabs.ae/
- URL: https://www.letspaylater.ph/
- IOS: https://apps.apple.com/in/app/pineperks/id908644471
- ANDROID: https://play.google.com/store/apps/details?id=com.pinegift
- URL: https://credit.pinelabs.com
- URL: https://plmcixt.pinelabs.com/
- ANDROID: https://play.google.com/store/apps/details?id=com.pinelabs.emicatalogue.pinelabs&hl=uz
- URL: https://emistores.pinelabs.com/
- URL: https://www.pinelabs.com/
- URL: https://www.pinelabs.my/
- URL: https://www.pinelabs.ae/
- URL: https://www.pinelabs.us/
- URL: https://board.pinelabs.com/
- URL: https://nbs.pinelabs.com/
- URL: https://dashboardv2.pluralonline.com
- URL: https://api.pluralonline.com
- URL: https://api.pluralpay.in
- URL: https://pinepg.in/
- URL: https://pluralcheckout.pinepg.in
|
| + | https://yeswehack.com/programs/powerdns | 1 | 0 | YesWeHack |
In Scope Assets:- OTHER: PowerDNS authoritative server, recursor and DNSdist (see "Software packages" and "Source-code")
|
| + | https://yeswehack.com/programs/programmes-de-primes-aux-bogues-du-gouvernement-du-quebec-cgcd | 20 | 0 | YesWeHack |
In Scope Assets:- URL: https://reptox.cnesst.gouv.qc.ca/
- URL: https://auth.pentest.clicsante.ca/
- URL: https://profile.pentest.clicsante.ca/
- URL: https://clients3.pentest.clicsante.ca/
- URL: https://portal3.pentest.clicsante.ca/
- URL: https://api3.pentest.clicsante.ca/
- URL: https://admin3.pentest.clicsante.ca/
- URL: https://auth.pentest.clicsante.ca/
- URL: https://poc-op-ywh.it.authentification.si.gouv.qc.ca/
- URL: https://auth-ywh.it.authentification.si.gouv.qc.ca/
- URL: https://www.cyber.gouv.qc.ca/
- URL: https://pab.donneesquebec.ca/
- URL: https://gap.citizenportal-test.bugbounty.akinox.dev/
- URL: https://test.m4sv.bugbounty.akinox.dev/
- URL: https://pbgq.upac.gouv.qc.ca/
- URL: https://pbgq-pes.upac.gouv.qc.ca/denonciation/
- URL: https://pbgq-pes.upac.gouv.qc.ca/nous-joindre/
- URL: https:/pbgq-pes.deontologie-policiere.gouv.qc.ca/demande-acces-info/
- URL: https://pbgq-pes.deontologie-policiere.gouv.qc.ca/demande-revision/
- URL: https://pbgq-pes.deontologie-policiere.gouv.qc.ca/reponses-questions/
|
| + | https://yeswehack.com/programs/qwant | 6 | 0 | YesWeHack |
In Scope Assets:- URL: www.qwant.com
- URL: api.qwant.com
- URL: s.qwant.com
- URL: s1.qwant.com
- URL: s2.qwant.com
- URL: qwantjunior.com
|
| + | https://yeswehack.com/programs/salt-mobile-sa-bug-bounty-program | 3 | 0 | YesWeHack |
In Scope Assets:- URL: https://my.salt.ch
- URL: https://eshop.salt.ch
- URL: https://login.salt.ch
|
| + | https://yeswehack.com/programs/sante-publique-france-bugbounty-public-program | 9 | 0 | YesWeHack |
In Scope Assets:- URL: www.onsexprime.fr
- URL: www.1000-premiers-jours.fr
- URL: mangerbouger.fr
- URL: sso.mangerbouger.fr
- URL: questionsexualite.fr
- URL: vaccination-info-service.fr
- URL: professionnels.vaccination-info-service.fr
- URL: www.vivre-avec-la-chaleur.fr
- URL: www.tabac-info-service.fr
|
| + | https://yeswehack.com/programs/sequoia-pgp-bug-bounty-program | 22 | 0 | YesWeHack |
In Scope Assets:- OTHER: buffered-reader
- OTHER: nettle-sys
- OTHER: nettle-rs
- OTHER: SHA1-CD
- OTHER: sequoia-openpgp
- OTHER: sequoia-autocrypt
- OTHER: sequoia-ipc
- OTHER: sequoia-net
- OTHER: Shared OpenPGP Certificate Directory
- OTHER: sequoia-cert-store
- OTHER: sequoia-wot
- OTHER: sequoia-policy-config
- OTHER: rpm-sequoia
- OTHER: sqv
- OTHER: sq
- OTHER: sqop
- OTHER: octopus
- OTHER: sequoia-git
- OTHER: OpenPGP Cert Directory Specification
- OTHER: Web of Trust Specification
- OTHER: Sequoia git Specification
- OTHER: chameleon
|
| + | https://yeswehack.com/programs/sogexia | 3 | 0 | YesWeHack |
In Scope Assets:- URL: https://my.sogexia.com
- ANDROID: https://play.google.com/store/apps/details?id=io.gonative.android.xjndrq&hl=fr
- IOS: itmss://apps.apple.com/us/app/id1510360750?ign-mscache=1
|
| + | https://yeswehack.com/programs/spacelift-io-bug-bounty-program | 5 | 0 | YesWeHack |
In Scope Assets:- URL: https://spacelift.dev/
- URL: https://*.app.spacelift.dev
- APPLICATION: Native K8S workers and operator
- APPLICATION: OIDC-based API keys
- APPLICATION: MFA
|
| + | https://yeswehack.com/programs/swapcard | 12 | 0 | YesWeHack |
In Scope Assets:- URL: api.swapcard.com
- URL: chat-api.swapcard.com/graphql
- URL: developer.swapcard.com/event-admin/graphql
- URL: login.swapcard.com
- URL: studio-api.swapcard.com
- URL: app.swapcard.com
- URL: studio.swapcard.com
- URL: team.swapcard.com
- IOS: https://apps.apple.com/fr/app/swapcard/id879488719
- ANDROID: https://play.google.com/store/apps/details?id=com.swapcard.apps.android&hl=fr
- URL: img.swapcard.com
- URL: t.swapcard.com
|
| + | https://yeswehack.com/programs/swiss-post | 11 | 0 | YesWeHack |
In Scope Assets:- OTHER: (*.post.ch:80|*.post.ch:443) AND 194.41.128.0/17
- URL: https://account.post.ch
- URL: https://shop.post.ch/shop
- URL: https://service.post.ch/ekp-web/
- URL: https://service.post.ch/zopa/app/
- ANDROID: https://play.google.com/store/apps/details?id=com.nth.swisspost&hl=de_CH&gl=US
- IOS: https://apps.apple.com/ch/app/die-post/id378676700
- IOS: https://itunes.apple.com/ch/app/postcard-creator/id820354055?mt=8
- ANDROID: https://play.google.com/store/apps/details?id=ch.post.it.pcc&hl=en
- URL: https://billingonline.post.ch/OnlinePayment/Web/v1/BOI
- URL: https://service.post.ch/ele-klp/ele/
|
| + | https://yeswehack.com/programs/swiss-post-evoting | 4 | 0 | YesWeHack |
In Scope Assets:- OTHER: Source Code
- OTHER: System Specification
- OTHER: Scenarios with Special Bounties
- OTHER: Protocol of the Swiss Post Voting System
|
| + | https://yeswehack.com/programs/systemd-bug-bounty-program | 17 | 0 | YesWeHack |
In Scope Assets:- OTHER: systemd (the manager itself)
- OTHER: systemd-boot
- OTHER: systemd-stub
- OTHER: systemd-udev
- OTHER: systemd-journald
- OTHER: systemd-logind
- OTHER: systemd-networkd
- OTHER: libsystemd
- OTHER: systemd-timesyncd
- OTHER: systemd-hostnamed
- OTHER: systemd-resolved
- OTHER: systemd-cryptenroll
- OTHER: systemd-cryptsetup
- OTHER: systemd-veritysetup
- OTHER: systemd-fstab-generator
- OTHER: systemd-gpt-auto-generator
- OTHER: systemd-ask-password
|
| + | https://yeswehack.com/programs/tchap-public | 10 | 0 | YesWeHack |
In Scope Assets:- URL: https://www.tchap.gouv.fr
- URL: https://matrix.agent.tchap.gouv.fr
- URL: https://matrix.agent.*.tchap.gouv.fr
- OTHER: https://github.com/tchapgouv
- ANDROID: https://play.google.com/store/apps/details?id=fr.gouv.tchap.a&hl=fr
- IOS: https://apps.apple.com/fr/app/tchap/id1446253779
- URL: https://www.beta.tchap.gouv.fr
- URL: https://matrix.i.tchap.gouv.fr
- URL: https://matrix.e.tchap.gouv.fr
- OTHER: Specific scenarios (see program description)
|
| + | https://yeswehack.com/programs/teamviewer-bounty-program | 9 | 0 | YesWeHack |
In Scope Assets:- APPLICATION: https://www.teamviewer.com/en/products/teamviewer/
- URL: https://web.teamviewer.com
- URL: https://account.teamviewer.com
- URL: https://login.teamviewer.com
- ANDROID: https://play.google.com/store/apps/details?id=com.teamviewer.teamviewer.market.mobile&hl=en&gl=US
- ANDROID: https://play.google.com/store/apps/details?id=com.teamviewer.quicksupport.market&hl=en&gl=US
- ANDROID: https://play.google.com/store/apps/details?id=com.teamviewer.host.market&hl=en&gl=US
- IOS: https://apps.apple.com/de/app/teamviewer-remote-control/id692035811
- IOS: https://apps.apple.com/de/app/teamviewer-quicksupport/id661649585
|
| + | https://yeswehack.com/programs/telenor-sweden-public-bug-bounty-program | 7 | 0 | YesWeHack |
In Scope Assets:- URL: *.telenor.se
- URL: *.bredbandsbolaget.se
- URL: *.europolitan.se
- URL: *.ownit.se
- URL: *.vimla.se
- URL: *.vimla.work
- URL: *.vimla.io
|
| + | https://yeswehack.com/programs/tencent-bug-bounty-program | 1 | 0 | YesWeHack |
In Scope Assets:- OTHER: In-Scope Products (for the full list please visit https://en.security.tencent.com/index.php/policy)
|
| + | https://yeswehack.com/programs/thuringer-aufbaubank-bug-bounty-program | 3 | 0 | YesWeHack |
In Scope Assets:- URL: https://thueringer-foerderportal.eu
- URL: https://ecohesion.aufbaubank.de
- URL: https://login.aufbaubank.de
|
| + | https://yeswehack.com/programs/toom-baumarkt-gmbh-bug-bounty-program | 3 | 0 | YesWeHack |
In Scope Assets:- URL: https://toom.de
- URL: https://api.toom.de
- URL: https://prozentoomat.toom.de
|
| + | https://yeswehack.com/programs/vfs-global-bug-bounty-program | 34 | 0 | YesWeHack |
In Scope Assets:- URL: *.vfsglobal.(com|co.uk|ca)
- URL: *.vfsevisa.com
- URL: *.onevasco.com
- URL: *.vascoworldwide.net
- URL: www.vfsvisaonline.com
- URL: www.dvpc.net
- URL: www.vfsvisaservicesrussia.com
- URL: *.directverify.in
- URL: *.docswallet.com
- URL: biometservices.com
- URL: agents.tasheer.com
- URL: https://gaadmin.vfsglobal.com/GlobalAdmin/
- URL: https://gaadmin.vfsglobal.com/Global-Admin/
- URL: https://rusadminappt.vfsglobal.com/Global-Admin/
- URL: https://gaadmin.vfsglobal.com/AustraliaApptAdmin/
- URL: https://gaadmin.vfsglobal.com/GAR1Ph1ApptAdmin/
- URL: https://onlinena.vfsglobal.dz/AppointmentAdmin/
- URL: https://gaadmin.vfsglobal.com/DHAAppointmentAdmin
- URL: https://equatorialguinea-evisa.com
- URL: https://online.srilankaevisa.lk/lka/en/login
- URL: https://online.mustaqel.qa/qat/en/login
- URL: https://appointment.vfsglobal.com.dz/forms/FRDZ/
- URL: https://vfs.mioot.com/
- URL: https://vfseu.mioot.com/
- URL: https://www.vfsvisaservice.com/
- URL: https://indonesiavoa.vfsevisa.id/
- URL: https://www.vfsglobalservices-germany.com/Global-Appointment/
- URL: https://www.vfsvisaservice.com/IHC-SouthKorea-Appointment
- URL: https://vc.tasheer.com/
- URL: *.vfsglobal.by
- URL: *. vfsevisa.id
- URL: *.vfsai.com
- URL: https://cicforms.mioot.com/forms/PS/
- URL: svtselb.tasheer.com
|
| + | https://yeswehack.com/programs/vincisa-public-program | 21 | 0 | YesWeHack |
In Scope Assets:- URL: www.vinci.com
- URL: leonard.vinci.com
- URL: castor.vinci.com
- URL: survey.vinci.com
- URL: www.fondation-vinci.com
- URL: www.lafabriquedelacite.com
- URL: www.lab-recherche-environnement.org
- URL: vœux.vinci.com
- URL: www.vinci-vie.fr
- URL: www.trajeoh.com
- URL: actionnaires.vinci.com
- URL: emag.vinci.com
- URL: boost.vinci.com
- URL: vinci-groupe.profils.org
- URL: jobs.vinci.com
- URL: solutions-environnement.vinci.com
- URL: essentiel.vinci.com
- URL: essentials.vinci.com
- URL: www.chaire-arpenter.fr
- URL: www.habileoh.com
- URL: stats.vinci.com
|
| + | https://yeswehack.com/programs/withings-public-program | 12 | 0 | YesWeHack |
In Scope Assets:- URL: https://wbsapi.withings.net
- URL: https://healthmate.withings.com
- URL: https://account.withings.com
- URL: https://app.withings.com
- URL: https://developer.withings.com/dashboard/
- URL: https://scalews.withings.com
- OTHER: Body Scan scale
- OTHER: Body Comp scale
- OTHER: Scanwatch Light
- OTHER: Scanwatch 2
- OTHER: Scanwatch Nova
- OTHER: Scanwatch
|
| + | https://yeswehack.com/programs/yes-we-hack | 4 | 0 | YesWeHack |
In Scope Assets:- URL: https://yeswehack.com
- URL: https://api.yeswehack.com
- URL: https://apps.yeswehack.com
- URL: https://www.yeswehack.com
|
| + | https://yeswehack.com/programs/zecible-public-bug-bounty-program | 17 | 0 | YesWeHack |
In Scope Assets:- URL: serveur12.notebleue.com
- URL: ywh.comptage.zecible.fr
- URL: ywh.static.zecible.fr
- URL: ywh.fichiers.zecible.fr
- URL: ywh.mydata.zecible.fr
- URL: ywh.admin.zecible.fr
- URL: ywh.api.zecible.fr
- URL: ywh.dev.zecible.fr
- URL: ywh.crons.zecible.fr
- URL: ywh.routage.zecible.fr
- URL: ywh.update.zecible.fr
- URL: odoo14.notebleue.pro
- URL: registre.notebleue.pro
- URL: svn.notebleue.pro
- URL: todo.notebleue.pro
- URL: webtoolbox.notebleue.pro
- URL: cam.notebleue.pro
|