copy-of-demo-tap-air-portugal-bug-bounty-program
13
In Scope
3
Out of Scope
In-Scope Assets (13)
| Asset | Category | Bounty | Quick Links | |
|---|---|---|---|---|
| https://agents.flytap.com | URL | Yes | ||
| https://apps.apple.com/us/app/tap-air-portugal/id440497198 | IOS | Yes | - | |
| https://booking.flytap.com | URL | Yes | ||
| https://groups.flytap.com | URL | Yes | ||
| https://myb.flytap.com | URL | Yes | ||
| https://play.google.com/store/apps/details?id=com.megasis.android | ANDROID | Yes | ||
| https://receipts.flytap.com | URL | Yes | ||
| https://store.flytap.com | URL | Yes | ||
| https://www.flytap.com | URL | Yes | ||
| https://www.tapairportugal.com | URL | Yes | ||
| https://www.tapcargo.com | URL | Yes | ||
| https://www.tapme.pt | URL | Yes | ||
| https://www.ucs.pt | URL | Yes |
Out-of-Scope Assets (3)
| Asset | Category | Bounty | |
|---|---|---|---|
| All domains or subdomains not listed in the above list of 'Scopes'. | OTHER | Yes | |
| Any reports related to the usage of a pair (PNR / Surname) or (TicketNumber / Surname) to get access to a Reservation. | OTHER | Yes | |
| Any reports related to the usage of a pair (PNR / Surname), (TicketNumber / Surname), or (ROR / Surname) to get access to a Refund. | OTHER | Yes |