Scope Updates
Recent changes to bug bounty program scopes.
| Change | Asset | Category | Scope | Program | Platform | Time |
|---|---|---|---|---|---|---|
| Added | those include but are not limited to (if unsure, contact us before executing the tests): | OTHER | Out of Scope | YesWeHack | 2026-02-21 00:33 | |
| Added | out-of-scope are also other applications hosted under the www.otto.de domain but have a different path, that is not part of our core online shop itself (you will notice, since the design of the page is completely different) | OTHER | Out of Scope | YesWeHack | 2026-02-21 00:33 | |
| Added | account squatting, or registering accounts to prevent others from signing up, is out of scope | OTHER | Out of Scope | YesWeHack | 2026-02-21 00:33 | |
| Added | all domains or subdomains not listed in the above list of 'scopes' | OTHER | Out of Scope | YesWeHack | 2026-02-21 00:33 | |
| Added | all domains (and their subdomains) not listed in the above list of 'scopes' | OTHER | Out of Scope | YesWeHack | 2026-02-21 00:33 | |
| Added | all other pine labs assets that are not listed above are to be treated as out of scope | OTHER | Out of Scope | YesWeHack | 2026-02-21 00:33 | |
| Added | not belonging to ant group’s products or systems | OTHER | Out of Scope | YesWeHack | 2026-02-21 00:33 | |
| Added | third-party applications and websites | OTHER | Out of Scope | YesWeHack | 2026-02-21 00:33 | |
| Added | all domains or subdomains not listed in the above list of 'scopes' | OTHER | Out of Scope | YesWeHack | 2026-02-21 00:33 | |
| Added | all domains or subdomains not listed in the above list of 'scopes' | OTHER | Out of Scope | YesWeHack | 2026-02-21 00:33 | |
| Added | all domains or subdomains not listed in the above list of 'scopes' | OTHER | Out of Scope | YesWeHack | 2026-02-21 00:33 | |
| Added | all domains or subdomains not listed in the above list of "scopes" are considered out of scope | OTHER | Out of Scope | YesWeHack | 2026-02-21 00:33 | |
| Added | all domains not listed in-scope | OTHER | Out of Scope | YesWeHack | 2026-02-21 00:33 | |
| Added | *.osp.ovh.com | OTHER | Out of Scope | YesWeHack | 2026-02-21 00:33 | |
| Added | vulnerabilities reported on client services | OTHER | Out of Scope | YesWeHack | 2026-02-21 00:33 | |
| Added | all domains, subdomains or applications not listed in the above list of 'scopes' | OTHER | Out of Scope | YesWeHack | 2026-02-21 00:33 | |
| Added | invite.contentsquare.com | OTHER | Out of Scope | YesWeHack | 2026-02-21 00:33 | |
| Added | page.contentsquare.com | OTHER | Out of Scope | YesWeHack | 2026-02-21 00:33 | |
| Added | loyalty.contentsquare.com | OTHER | Out of Scope | YesWeHack | 2026-02-21 00:33 | |
| Added | trust.contentsquare.com | OTHER | Out of Scope | YesWeHack | 2026-02-21 00:33 | |
| Added | get.contentsquare.com | OTHER | Out of Scope | YesWeHack | 2026-02-21 00:33 | |
| Added | explore.contentsquare.com | OTHER | Out of Scope | YesWeHack | 2026-02-21 00:33 | |
| Added | *.wwko*.contentsquare.com | OTHER | Out of Scope | YesWeHack | 2026-02-21 00:33 | |
| Added | incident.contentsquare.com | OTHER | Out of Scope | YesWeHack | 2026-02-21 00:33 | |
| Added | partners.contentsquare.com | OTHER | Out of Scope | YesWeHack | 2026-02-21 00:33 |