boursobank-blackbox-bug-bounty-program
4
In Scope
3
Out of Scope
In-Scope Assets (4)
| Asset | Category | Bounty | Quick Links | |
|---|---|---|---|---|
| https://[clients | bourse | souscription].boursobank.com | URL | Yes | - | |
| https://[www | developer].boursorama.com | URL | Yes | - | |
| https://api.boursobank.com | URL | Yes | ||
| https://www.boursobank.com | URL | Yes |
Out-of-Scope Assets (3)
| Asset | Category | Bounty | |
|---|---|---|---|
| ## API Disclosure Policy | OTHER | Yes | |
| All domains or subdomains not listed in the above list of 'Scopes' | OTHER | Yes | |
| This program does not accept vulnerabilities discovered through or originating from the “BoursoBank” mobile application, even if they involve the API. Such findings must be reported to the “BoursoBank - Mobile Application Bug Bounty Program”. | OTHER | Yes |