Grammarly

target_in_scope

asset_identifier asset_type availability requirement confidentiality requirement eligible for bounty eligible for submission integrity requirement max_severity
MS Office Add-In OTHER medium medium medium critical
Grammarly add-on (works with MS Word and Outlook for Windows), where authorized users can check their Word documents or emails, including the auto-update functionality (can be tested on an [older version](https://download-office.grammarly.com/installer/GrammarlyAddInSetup6.6.110.exe)). Prerequisites: MS Word/Outlook, .NET Framework 4.5
*.grammarly.io URL medium high medium critical
*.grammarly.net URL medium medium medium critical
Browser Extensions OTHER high high high critical
Grammarly Extension for Chrome, Firefox, Edge, Safari allows users to check text they enter anywhere on the web, including popular web sites like GMail, Facebook, Twitter, LinkedIn, YouTube, etc. The extension detects focus in text fields, checks the text and shows underlines and mini-cards. The extension is available in the extension/add-on store of the respective browser: * [Chrome](https://chrome.google.com/webstore/detail/grammarly-for-chrome/kbfnbcaeplbcioakkpcpgfkobkghlhen?hl=en) * [Firefox](https://addons.mozilla.org/en-US/firefox/addon/grammarly-1/) * [Edge](https://www.microsoft.com/en-us/store/p/grammarly-for-microsoft-edge/9p59wxtbhzzm) * [Safari](https://safari-extensions.apple.com/details/?id=com.grammarly.spellchecker.extension-W8F64X92K3) It can also be installed from the grammarly.com web site. **Browser Extension vulnerabilities will not be distinguished. For example, if a vulnerability exists in the Chrome and Safari extensions, we will consider it the same vulnerability and will only award one bounty.**
Desktop Editor for MacOS DOWNLOADABLE_EXECUTABLES high high high critical
Executable can be downloaded from [our website](https://download-editor.grammarly.com/osx/Grammarly.dmg):
Desktop Editor for Windows DOWNLOADABLE_EXECUTABLES high high high critical
Executable can be downloaded from [our website](https://download-editor.grammarly.com/windows/GrammarlySetup.exe)
admin-panel.grammarly.com URL critical
Administrative portal for the account managers of educational institutions that are Grammarly customers. (requires to sign-in with Grammarly account with EDU admin permissions) No admin credentials will be provided. Un-authenticated testing only.
app.grammarly.com URL medium medium medium critical
Grammarly Web Editor which allows authorized users to list, upload, download, and edit their documents. User documents are stored at dox.grammarly.com. Note: Please create a new Grammarly account to access this asset. Existing accounts are linked to the old version of the editor, which is out of scope.
auth.grammarly.com URL critical
User sign-up, sign-in, password reset, etc.
capi.grammarly.com URL critical
Check and process text, available for example at https://www.grammarly.com/plagiarism
com.grammarly.android.keyboard GOOGLE_PLAY_APP_ID medium medium medium critical
Grammarly Keyboard for Android and the Companion Android App - The Grammarly Keyboard seamlessly integrates into any app on the Android device. See the installation instructions and FAQ on [our page](https://support.grammarly.com/hc/en-us/sections/115000185651-Grammarly-Keyboard-for-Android)
com.grammarly.keyboard APPLE_STORE_APP_ID medium medium medium critical
Grammarly Keyboard for iOS, including the Companion iOS App - The Grammarly Keyboard seamlessly integrates into any app on the iOS device. See the installation instructions and FAQ on [our page](https://support.grammarly.com/hc/en-us/sections/115000185631-Grammarly-Keyboard-for-iOS)
dapi.grammarly.com URL critical
Store various user settings and properties
data.grammarly.com URL critical
Store various user settings and properties.
dox.grammarly.com URL critical
List, upload, download and edit user documents
felog.grammarly.com URL medium medium medium critical
API for tracking and analytics.
gnar.grammarly.com URL high high high critical
API for tracking and analytics.
grammarly.ai URL none none low low
irbis.grammarly.com URL critical
Manage user subscriptions, upgrading to premium plan, etc.
proofit.com URL low medium medium critical
www.grammarly.com URL critical
Main Grammarly portal where users sign-up, login, reset password
datareport.grammarly.com URL high high high critical
Grammarly portal for "Personal Data Reports"
institution.grammarly.com URL high high high critical
subscription.grammarly.com URL high high high critical
account.grammarly.com URL high high high critical
atool.proofit.grammarlyaws.com URL high high critical
food.grammarly.io URL low low low medium
*.proofit.com URL high high high critical
g-mail.grammarly.com URL high critical
Grammarly for Microsoft Word DOWNLOADABLE_EXECUTABLES high critical
Vulnerabilities are eligible for submission if they’re reproducible on any version of Word on OS with all latest security patches applied. The vulnerability should be tested on a system without additional SDKs and development kits. We cover your expenses on a Word license if the report appears to be valid. You can install **Grammarly for Microsoft Word** at https://appsource.microsoft.com/en-us/product/office/WA200001011

target_out_of_scope

asset_identifier asset_type availability requirement confidentiality requirement eligible for bounty eligible for submission integrity requirement max_severity
*.cpgr.io URL none
*.grammarlyaws.com URL none
*.ppgr.io URL none
*.qagr.io URL none
*.stgr.io URL none
Password and email policy OTHER none
Please do not check for: - password length and complexity requirements - email validation feature We are aware of the fact that these features are rather simple at the moment. This is a subject of an ongoing product work. We will update them in the future to ensure more strict rules.
send.grammarly.com URL none none none none
Third party external service
support.grammarly.com URL none
Third party external service.
tech.grammarly.com URL low medium medium none
Grammarly Engineering Blog
beamlink.grammarly.com URL none
Third party external service
calendar.grammarly.com URL none
Third party external service
campaign.grammarly.com URL none
Third party external service
email.grammarly.com URL none
Third party external service
status.grammarly.com URL none
Third party external service
Third party external services OTHER none
- `send.grammarly.com` - `calendar.grammarly.com` - `support.grammarly.com` - `status.grammarly.com`
anagram.grammarly.io URL none