Google API Security Rewards Program

target_in_scope

asset_identifier asset_type availability requirement confidentiality requirement eligible for bounty eligible for submission integrity requirement max_severity
Abre Platform OTHER critical
**Homepage:** https://abre.io **Vulnerability Disclosure:** https://abreio.atlassian.net/servicedesk/customer/portal/1/group/1/create/8
Airmail iOS OTHER critical
**Homepage:** http://airmailapp.com **Vulnerability Disclosure:** https://airmailapp.com/vdp.html
Amazon Alexa OTHER critical
**Homepage:** https://alexa.amazon.com **Vulnerability Disclosure:** https://www.amazon.com/gp/help/customer/display.html?nodeId=201909140
App in the Air OTHER critical
**Homepage:** https://www.appintheair.mobi **Vulnerability Disclosure:** vulnerability@appintheair.mobi
Arrive OTHER critical
**Homepage:** https://tryarrive.com/ **Vulnerability Disclosure:** https://hackerone.com/shopify
Bark for Gmail OTHER critical
**Homepage:** https://www.bark.us **Vulnerability Disclosure:** https://www.bark.us/security
Boomerang for Gmail OTHER critical
**Homepage**: https://www.boomeranggmail.com **Vulnerability Disclosure:** https://docs.google.com/document/d/1Szh7G157XW-cPdg3TadZGu0u1v6Zggu-ucBV2eypTbk/edit
CRED OTHER critical
**Homepage:** https://www.cred.club **Vulnerability Disclosure:** https://www.cred.club/security.html
Checker Plus for Gmail OTHER critical
**Homepage:** https://jasonsavard.com/Checker-Plus-for-Gmail **Vulnerability Disclosure:** https://jasonsavard.com/wiki/Security
Chuck OTHER critical
**Homepage:** https://chuck.email **Vulnerability Disclosure:** https://chuck.email/vdp
Contacts+ OTHER critical
**Homepage:** https://www.contactsplus.com **Vulnerability Disclosure:** www.contactsplus.com/security
Copper CRM OTHER critical
**Homepage:** https://www.copper.com **Vulnerability Disclosure:** https://hackerone.com/copper/
Dialpad OTHER critical
**Homepage:** https://dialpad.com **Vulnerability Disclosure:** https://www.dialpad.com/trust
Digital Inspiration - Email Notifications for Forms OTHER critical
**Homepage**: https://digitalinspiration.com/product/google-forms-notifications **Vulnerability Disclosure:** http://bit.ly/ReportVulnerability
Digital Inspiration - Mail Merge with Attachments OTHER critical
**Homepage**: https://digitalinspiration.com/product/gmail-mail-merge **Vulnerability Disclosure:** http://bit.ly/ReportVulnerability
DocHub OTHER critical
**Homepage:** https://dochub.com **Vulnerability Disclosure:** https://dochub.com/site/security
Drift OTHER critical
**Homepage:** https://www.drift.com **Vulnerability Disclosure:** https://www.drift.com/security/
Earny OTHER critical
**Homepage:** https://www.earny.co **Vulnerability Disclosure:** https://hackerone.com/earny
Email - Edison Mail OTHER critical
**Homepage:** http://www.edison.tech **Vulnerability Disclosure:** https://mailsupport.edison.tech/hc/en-us
Email Home OTHER critical
**Homepage:** https://www.emailhomeapp.com **Vulnerability Disclosure:** https://reachmobi.com/contact-us
Folio by Amitree OTHER critical
**Homepage:** https://www.amitree.com **Vulnerability Disclosure:** https://hackerone.com/amitree_inc
Form Publisher OTHER critical
**Homepage:** https://form-publisher.com/ **Vulnerability Disclosure:** https://support.yet-another-mail-merge.com/hc/en-us/articles/360009899780
Front OTHER critical
**Homepage:** http://frontapp.com **Vulnerability Disclosure:** https://help.frontapp.com/t/x129jc/reporting-vulnerabilities
GMass OTHER critical
**Homepage:** http://www.gmass.co
Gmail Bot for Telegram OTHER critical
**Homepage:** https://telegram.me/gmailbot **Vulnerability Disclosure:** https://core.telegram.org/techfaq#q-i-39m-a-security-expert-and-i-think-your-protocol-is-not-secur
Gmail ShuttleCloud Migration OTHER critical
**Homepage:** https://www.shuttlecloud.com **Vulnerability Disclosure:** https://www.shuttlecloud.com/security
Groww OTHER critical
**Homepage:** https://groww.in **Vulnerability Disclosure:** https://groww.in/p/security
HubSpot OTHER critical
**Homepage:** https://www.hubspot.com **Vulnerability Disclosure:** https://bugcrowd.com/hubspot
Integromat OTHER critical
**Homepage:** https://www.integromat.com **Vulnerability Disclosure:** https://www.integromat.com/en/bounty
KAYAK Trips OTHER critical
**Homepage:** https://www.kayak.com **Vulnerability Disclosure:** https://www.kayak.com/security
Lever OTHER critical
**Homepage:** https://lever.co **Vulnerability Disclosure:** https://www.lever.co/privacy
Lightning for Gmail OTHER critical
**Homepage:** https://www.salesforce.com **Vulnerability Disclosure:** https://trust.salesforce.com/en/security/responsible-disclosure-policy/
MailTime OTHER critical
**Homepage**: http://mailtime.com **Vulnerability Disclosure:** https://hackerone.com/mailtime_technology_inc
Mailspring OTHER critical
**Homepage:** https://getmailspring.com **Vulnerability Disclosure:** https://www.getmailspring.com/security
Mailstrom OTHER critical
**Homepage:** https://mailstrom.co **Vulnerability Disclosure:** https://mailstrom.co/vdp
Mailtrack OTHER critical
**Homepage:** https://mailtrack.io **Vulnerability Disclosure:** https://mailtrack.io/en/responsible-vulnerability
Mixmax OTHER critical
**Homepage:** https://mixmax.com **Vulnerability Disclosure:** https://links92.mixmaxusercontent.com/x84crKQQ9WoRRDKLk/l/m7tCkmr6jCFe9NBFG?messageId=8Cg6uCZI1a7szzlML&rn=gIltWYyJEIuFWeyJkI&re=ISbvNmL5RXayV3YlNnbhhGdhlmdlxGQltWYyJkLuFWeyJkI&sc=false
Newton by CloudMagic OTHER critical
**Homepage:** https://newtonhq.com **Vulnerability Disclosure:** https://hackerone.com/newtonmailapp
Paribus OTHER critical
**Homepage:** https://paribus.co **Vulnerability Disclosure:** https://hackerone.com/capital-one
Pipedrive OTHER critical
**Homepage:** https://www.pipedrive.com **Vulnerability Disclosure:** https://sites.google.com/pipedrive.com/pipedrive-vdp
Rakuten Cash Back OTHER critical
**Homepage:** https://www.rakuten.com/ **Vulnerability Disclosure:** https://hackerone.com/ebates
Right Inbox OTHER critical
**Homepage:** http://www.rightinbox.com **Vulnerability Disclosure:** https://www.rightinbox.com/security
Salesforce.com OTHER critical
**Homepage:** https://www.salesforce.com **Vulnerability Disclosure:** https://trust.salesforce.com/en/security/responsible-disclosure-policy/
Service: travel and save money OTHER critical
**Homepage:** https://getservice.com **Vulnerability Disclosure:** https://getservice.com/faq
Sideqik OTHER critical
**Homepage:** http://www.sideqik.com **Vulnerability Disclosure:** https://www.sideqik.com/contact
Slice OTHER critical
**Homepage:** https://www.slice.com **Vulnerability Disclosure:** https://support.slice.com/hc/en-us/articles/360036908652--How-do-I-report-a-security-issue-
Spike OTHER critical
**Homepage:** https://www.spikenow.com **Vulnerability Disclosure:** chat@spikenow.com
Streak OTHER critical
**Homepage:** https://www.streak.com **Vulnerability Disclosure:** https://www.streak.com/security
TripIt OTHER critical
**Homepage:** https://www.tripit.com **Vulnerability Disclosure:** https://bugcrowd.com/concur
Unroll.me OTHER critical
**Homepage:** https://unroll.me **Vulnerability Disclosure:** https://support.unroll.me/hc/en-us/articles/360036946131-How-do-I-report-a-security-issue-
Waldo OTHER critical
**Homepage:** https://www.getwaldo.com **Vulnerability Disclosure:** https://www.getwaldo.com/vdp.html
Wix OTHER critical
**Homepage:** https://www.wix.com **Vulnerability Disclosure:** https://support.wix.com/en/article/reporting-a-security-issue
Workable OTHER critical
**Homepage:** https://www.workable.com **Vulnerability Disclosure:** https://www.openbugbounty.org/search/?search=https%3A%2F%2Fworkable.com&researcher=&program=
Workray OTHER critical
**Homepage:** https://www.workray.com **Vulnerability Disclosure:** https://www.workray.com/en/terms
Yet Another Mail Merge OTHER critical
**Homepage:** https://yet-another-mail-merge.com/ **Vulnerability Disclosure:** https://support.yet-another-mail-merge.com/hc/en-us/articles/360009899780
Zoho OTHER critical
**Homepage:** https://www.zoho.com ** Vulnerability Disclosure:** https://bugbounty.zoho.com/bb/info
cloudHQ OTHER critical
**Homepage:** https://www.cloudhq.net/g_suite **Vulnerability Disclosure:** https://www.cloudhq.net/security
Apollo OTHER critical
**Homepage:** https://www.apollo.io **Vulnerability Disclosure:** https://www.apollo.io/terms-of-service/
CINC OTHER critical
**Homepage:** https://www.commissionsinc.com **Vulnerability Disclosure:** https://www.cincpro.com/report-vulnerability/
MySmartPrice OTHER critical
**Homepage:** https://www.mysmartprice.com/shopping/trend/ **Vulnerability Disclosure:** https://www.mysmartprice.com/shopping/trend/disclosure
Outreach OTHER critical
**Homepage:** https://outreach.io **Vulnerability Disclosure:** https://www.outreach.io/trust/responsible-disclosure
Snovio OTHER critical
**Homepage:** https://snov.io/ **Vulnerability Disclosure:** https://www.openbugbounty.org/bugbounty/snov_io/
Superhuman OTHER critical
**Homepage:** https://superhuman.com **Vulnerability Disclosure:** https://superhuman.com/contact
WiseStamp OTHER critical
**Homepage:** https://www.wisestamp.com **Vulnerability Disclosure:** https://www.wisestamp.com/security/
Yandex OTHER critical
**Homepage:** https://www.yandex.ru **Vulnerability Disclosure:** https://yandex.com/bugbounty/

target_out_of_scope

asset_identifier asset_type availability requirement confidentiality requirement eligible for bounty eligible for submission integrity requirement max_severity