Pre-authentication account takeover findings are now out of scope
Effective immediately, pre-authentication account takeover findings are now out of scope. Please re-review the bounty brief in detail and adjust your testing, and all scanners accordingly to make sure you are only testing and submitting in-scope bugs.
Any pending submissions submitted before the out of scope changes will be reviewed and processed accordingly.
If you have any questions on the change in the scope, please reach out to email@example.com.