Open-Xchange HackerOne

Target Policy
https://hackerone.com/open-xchange?type=team
Structured Scope
  • Asset Identifier
    Asset Type
    Max Severity
  • https://repo.dovecot.org
    DOWNLOADABLE_EXECUTABLES
    critical
  • *.powerdns.org
    URL
    none
  • *.open-xchange.com

    Our corporate website, blog and any other services are not in scope fo this program. It solely focuses on the software that we create, which is available as source-code, packages and as a hosted sandbox environment.

    URL
    none
  • https://github.com/dovecot/core
    SOURCE_CODE
    critical
  • *.dovecot.org
    URL
    none
  • https://github.com/open-xchange/appsuite-middleware
    SOURCE_CODE
    critical
  • https://github.com/PowerDNS/pdns
    SOURCE_CODE
    critical
  • https://github.com/open-xchange/appsuite-frontend
    SOURCE_CODE
    critical
  • *.dovecot.fi
    URL
    none
  • sandbox.open-xchange.com
    URL
    critical
  • https://github.com/dovecot/pigeonhole
    SOURCE_CODE
    critical
  • 1585939206
    APPLE_STORE_APP_ID
    high
  • https://repo.powerdns.com
    DOWNLOADABLE_EXECUTABLES
    critical
  • *.powerdns.com
    URL
    none
  • com.openexchange.drive.vanilla
    GOOGLE_PLAY_APP_ID
    high
Target Scope Domains
  • sandbox.open-xchange.com
Tech Stack
Last Finished Scan:
Scan Name
Fleet
Finished
State
auto-gausubs-2-kxss
allkxss
1 year, 1 month ago
Finished
auto-gausubs-2-kxss
  • Fleet: allkxss
  • Duration: 17.67 Minutes
  • Finished: 1 year, 1 month ago