应用安全检测报告
应用安全检测报告,支持文件搜索、内容检索和AI代码分析
移动应用安全检测报告
Vi App v10.18.0
40
安全评分
安全基线评分
40/100
中风险
综合风险等级
风险等级评定
- A
- B
- C
- F
应用存在一定安全风险,建议优化
漏洞与安全项分布
12
高危
33
中危
5
信息
2
安全
隐私风险评估
13
第三方跟踪器
高隐私风险
检测到大量第三方跟踪器
检测结果分布
高危安全漏洞
12
中危安全漏洞
33
安全提示信息
5
已通过安全项
2
重点安全关注
0
高危安全漏洞 App 链接 assetlinks.json 文件未找到
[android:name=com.mventus.selfcare.activity.MainActivityic_festival][android:host=https://myvi.in] App Link 资产验证 URL(https://myvi.in/.well-known/assetlinks.json)未找到或配置不正确。(状态码:301)。应用程序链接允许用户通过 Web URL 或电子邮件直接跳转到移动应用。如果 assetlinks.json 文件缺失或主机/域配置错误,恶意应用可劫持此类 URL,导致网络钓鱼攻击,泄露 URI 中的敏感信息(如 PII、OAuth 令牌、魔术链接/重置令牌等)。请务必通过托管 assetlinks.json 文件并在 Activity 的 intent-filter 中设置 [android:autoVerify="true"] 来完成 App Link 域名验证。
高危安全漏洞 App 链接 assetlinks.json 文件未找到
[android:name=com.mventus.selfcare.activity.MainActivityic_independence][android:host=https://myvi.in] App Link 资产验证 URL(https://myvi.in/.well-known/assetlinks.json)未找到或配置不正确。(状态码:301)。应用程序链接允许用户通过 Web URL 或电子邮件直接跳转到移动应用。如果 assetlinks.json 文件缺失或主机/域配置错误,恶意应用可劫持此类 URL,导致网络钓鱼攻击,泄露 URI 中的敏感信息(如 PII、OAuth 令牌、魔术链接/重置令牌等)。请务必通过托管 assetlinks.json 文件并在 Activity 的 intent-filter 中设置 [android:autoVerify="true"] 来完成 App Link 域名验证。
高危安全漏洞 App 链接 assetlinks.json 文件未找到
[android:name=com.mventus.selfcare.activity.MainActivityic_launcher][android:host=https://myvi.in] App Link 资产验证 URL(https://myvi.in/.well-known/assetlinks.json)未找到或配置不正确。(状态码:301)。应用程序链接允许用户通过 Web URL 或电子邮件直接跳转到移动应用。如果 assetlinks.json 文件缺失或主机/域配置错误,恶意应用可劫持此类 URL,导致网络钓鱼攻击,泄露 URI 中的敏感信息(如 PII、OAuth 令牌、魔术链接/重置令牌等)。请务必通过托管 assetlinks.json 文件并在 Activity 的 intent-filter 中设置 [android:autoVerify="true"] 来完成 App Link 域名验证。
高危安全漏洞 App 链接 assetlinks.json 文件未找到
[android:name=com.mventus.selfcare.activity.MainActivityic_launcher][android:host=https://vi.app.link] App Link 资产验证 URL(https://vi.app.link/.well-known/assetlinks.json)未找到或配置不正确。(状态码:404)。应用程序链接允许用户通过 Web URL 或电子邮件直接跳转到移动应用。如果 assetlinks.json 文件缺失或主机/域配置错误,恶意应用可劫持此类 URL,导致网络钓鱼攻击,泄露 URI 中的敏感信息(如 PII、OAuth 令牌、魔术链接/重置令牌等)。请务必通过托管 assetlinks.json 文件并在 Activity 的 intent-filter 中设置 [android:autoVerify="true"] 来完成 App Link 域名验证。
高危安全漏洞 App 链接 assetlinks.json 文件未找到
[android:name=com.mventus.selfcare.activity.MainActivityic_launcher][android:host=https://vi-alternate.app.link] App Link 资产验证 URL(https://vi-alternate.app.link/.well-known/assetlinks.json)未找到或配置不正确。(状态码:404)。应用程序链接允许用户通过 Web URL 或电子邮件直接跳转到移动应用。如果 assetlinks.json 文件缺失或主机/域配置错误,恶意应用可劫持此类 URL,导致网络钓鱼攻击,泄露 URI 中的敏感信息(如 PII、OAuth 令牌、魔术链接/重置令牌等)。请务必通过托管 assetlinks.json 文件并在 Activity 的 intent-filter 中设置 [android:autoVerify="true"] 来完成 App Link 域名验证。
高危安全漏洞 该文件是World Writable。任何应用程序都可以写入文件
该文件是World Writable。任何应用程序都可以写入文件 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05d-Testing-Data-Storage.md#testing-local-storage-for-sensitive-data-mstg-storage-1-and-mstg-storage-2 Files: com/yupptv/ottsdk/utils/PreferencesUtils.java, line(s) 54 in/juspay/hypersdk/core/AndroidInterface.java, line(s) 665 in/juspay/hypersdk/data/KeyValueStore.java, line(s) 34
高危安全漏洞 如果一个应用程序使用WebView.loadDataWithBaseURL方法来加载一个网页到WebView,那么这个应用程序可能会遭受跨站脚本攻击
如果一个应用程序使用WebView.loadDataWithBaseURL方法来加载一个网页到WebView,那么这个应用程序可能会遭受跨站脚本攻击 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05h-Testing-Platform-Interaction.md#static-analysis-7 Files: com/adobe/marketing/mobile/assurance/AssuranceFullScreenTakeover.java, line(s) 109,11,12 com/adobe/marketing/mobile/services/ui/MessageWebViewUtil.java, line(s) 176,13 com/clevertap/android/sdk/inapp/CTInAppBaseFullHtmlFragment.java, line(s) 119,12,13 com/clevertap/android/sdk/inapp/CTInAppBasePartialHtmlFragment.java, line(s) 122,16,17 com/reactnativecommunity/webview/RNCWebViewManagerImpl.java, line(s) 652,15 in/juspay/hypersdk/core/DynamicUI.java, line(s) 266,533,11 in/juspay/hypersdk/safe/JuspayWebView.java, line(s) 61,9,10 in/juspay/trident/ui/m.java, line(s) 132,287,10,11
高危安全漏洞 应用程序使用带PKCS5/PKCS7填充的加密模式CBC。此配置容易受到填充oracle攻击。
应用程序使用带PKCS5/PKCS7填充的加密模式CBC。此配置容易受到填充oracle攻击。 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#identifying-insecure-andor-deprecated-cryptographic-algorithms-mstg-crypto-4 Files: com/adityabirlawellness/vifitsdk/utility/EncryptionHelper.java, line(s) 28 com/clevertap/android/sdk/cryption/AESCrypt.java, line(s) 56 com/mventus/selfcare/activity/callblocking/spam_blocker/SpamCheck.java, line(s) 39 com/nimbusds/jose/crypto/impl/AESCBC.java, line(s) 27 com/onmobile/rbtsdkui/http/Crypto/AES.java, line(s) 45 com/onmobile/rbtsdkui/util/CrossPromoPayloadEncrypter.java, line(s) 15 com/onmobile/rbtsdkui/util/StringEncrypter.java, line(s) 28,46 com/tom_roush/pdfbox/pdmodel/encryption/SecurityHandler.java, line(s) 123,150 f/b.java, line(s) 61,92 in/juspay/trident/security/g.java, line(s) 92,113
高危安全漏洞 应用程序在加密算法中使用ECB模式。ECB模式是已知的弱模式,因为它对相同的明文块[UNK]产生相同的密文
应用程序在加密算法中使用ECB模式。ECB模式是已知的弱模式,因为它对相同的明文块[UNK]产生相同的密文 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#weak-block-cipher-mode Files: com/tom_roush/pdfbox/pdmodel/encryption/StandardSecurityHandler.java, line(s) 292
高危安全漏洞 不安全的Web视图实现。Web视图忽略SSL证书错误并接受任何SSL证书。此应用程序易受MITM攻击
不安全的Web视图实现。Web视图忽略SSL证书错误并接受任何SSL证书。此应用程序易受MITM攻击 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05g-Testing-Network-Communication.md#webview-server-certificate-verification Files: com/yupptv/ott/MoviesWebViewActivity.java, line(s) 913,898
高危安全漏洞 该文件是World Readable。任何应用程序都可以读取文件
该文件是World Readable。任何应用程序都可以读取文件 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05d-Testing-Data-Storage.md#testing-local-storage-for-sensitive-data-mstg-storage-1-and-mstg-storage-2 Files: com/appsflyer/internal/AFa1zSDK.java, line(s) 565
高危安全漏洞 应用程序包含隐私跟踪程序
此应用程序有多个13隐私跟踪程序。跟踪器可以跟踪设备或用户,是终端用户的隐私问题。
中危安全漏洞 应用已启用明文网络流量
[android:usesCleartextTraffic=true] 应用允许明文网络流量(如 HTTP、FTP 协议、DownloadManager、MediaPlayer 等)。API 级别 27 及以下默认启用,28 及以上默认禁用。明文流量缺乏机密性、完整性和真实性保护,攻击者可窃听或篡改传输数据。建议关闭明文流量,仅使用加密协议。
中危安全漏洞 Activity (com.mventus.selfcare.activity.MainActivity) 未受保护。
[android:exported=true] 检测到 Activity 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Activity-Alias (com.mventus.selfcare.activity.MainActivityic_festival) 未受保护。
[android:exported=true] 检测到 Activity-Alias 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Activity-Alias (com.mventus.selfcare.activity.MainActivityic_independence) 未受保护。
[android:exported=true] 检测到 Activity-Alias 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Activity-Alias (com.mventus.selfcare.activity.MainActivityic_launcher) 未受保护。
[android:exported=true] 检测到 Activity-Alias 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Broadcast Receiver (com.mventus.selfcare.activity.otpAutoFetch.OTPBroadcastReceiver) 受权限保护,但应检查权限保护级别。
Permission: com.google.android.gms.auth.api.phone.permission.SEND [android:exported=true] 检测到 Broadcast Receiver 已导出并受未在本应用定义的权限保护。请在权限定义处核查其保护级别。若为 normal 或 dangerous,恶意应用可申请并与组件交互;若为 signature,仅同证书签名应用可访问。
中危安全漏洞 Activity (in.juspay.hypersdk.core.CustomtabResult) 未受保护。
[android:exported=true] 检测到 Activity 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Broadcast Receiver (io.invertase.firebase.messaging.ReactNativeFirebaseMessagingReceiver) 受权限保护,但应检查权限保护级别。
Permission: com.google.android.c2dm.permission.SEND [android:exported=true] 检测到 Broadcast Receiver 已导出并受未在本应用定义的权限保护。请在权限定义处核查其保护级别。若为 normal 或 dangerous,恶意应用可申请并与组件交互;若为 signature,仅同证书签名应用可访问。
中危安全漏洞 Activity (com.yupptv.ott.MoviesWebViewActivity) 未受保护。
[android:exported=true] 检测到 Activity 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Activity (com.viapps.viappwebview.UniversalWebActivity) 未受保护。
[android:exported=true] 检测到 Activity 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Broadcast Receiver (com.clevertap.android.sdk.pushnotification.fcm.CTFirebaseMessagingReceiver) 受权限保护,但应检查权限保护级别。
Permission: com.google.android.c2dm.permission.SEND [android:exported=true] 检测到 Broadcast Receiver 已导出并受未在本应用定义的权限保护。请在权限定义处核查其保护级别。若为 normal 或 dangerous,恶意应用可申请并与组件交互;若为 signature,仅同证书签名应用可访问。
中危安全漏洞 Activity (com.amazon.apay.hardened.activity.RedirectUriReceiverActivity) 未受保护。
[android:exported=true] 检测到 Activity 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Activity (com.amazon.android.apay.commonlibrary.browsinglib.activity.RedirectUriReceiverActivity) 未受保护。
[android:exported=true] 检测到 Activity 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Service (androidx.work.impl.background.systemjob.SystemJobService) 受权限保护,但应检查权限保护级别。
Permission: android.permission.BIND_JOB_SERVICE [android:exported=true] 检测到 Service 已导出并受未在本应用定义的权限保护。请在权限定义处核查其保护级别。若为 normal 或 dangerous,恶意应用可申请并与组件交互;若为 signature,仅同证书签名应用可访问。
中危安全漏洞 Broadcast Receiver (androidx.work.impl.diagnostics.DiagnosticsReceiver) 受权限保护,但应检查权限保护级别。
Permission: android.permission.DUMP [android:exported=true] 检测到 Broadcast Receiver 已导出并受未在本应用定义的权限保护。请在权限定义处核查其保护级别。若为 normal 或 dangerous,恶意应用可申请并与组件交互;若为 signature,仅同证书签名应用可访问。
中危安全漏洞 Activity (com.amazon.identity.auth.device.workflow.WorkflowActivity) 未受保护。
[android:exported=true] 检测到 Activity 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Service (com.google.android.gms.auth.api.signin.RevocationBoundService) 受权限保护,但应检查权限保护级别。
Permission: com.google.android.gms.auth.api.signin.permission.REVOCATION_NOTIFICATION [android:exported=true] 检测到 Service 已导出并受未在本应用定义的权限保护。请在权限定义处核查其保护级别。若为 normal 或 dangerous,恶意应用可申请并与组件交互;若为 signature,仅同证书签名应用可访问。
中危安全漏洞 Broadcast Receiver (com.google.firebase.iid.FirebaseInstanceIdReceiver) 受权限保护,但应检查权限保护级别。
Permission: com.google.android.c2dm.permission.SEND [android:exported=true] 检测到 Broadcast Receiver 已导出并受未在本应用定义的权限保护。请在权限定义处核查其保护级别。若为 normal 或 dangerous,恶意应用可申请并与组件交互;若为 signature,仅同证书签名应用可访问。
中危安全漏洞 Broadcast Receiver (androidx.profileinstaller.ProfileInstallReceiver) 受权限保护,但应检查权限保护级别。
Permission: android.permission.DUMP [android:exported=true] 检测到 Broadcast Receiver 已导出并受未在本应用定义的权限保护。请在权限定义处核查其保护级别。若为 normal 或 dangerous,恶意应用可申请并与组件交互;若为 signature,仅同证书签名应用可访问。
中危安全漏洞 Activity (one.upswing.sdk.ui.UpswingActivity) 未受保护。
[android:exported=true] 检测到 Activity 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 SHA-1是已知存在哈希冲突的弱哈希
SHA-1是已知存在哈希冲突的弱哈希 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#identifying-insecure-andor-deprecated-cryptographic-algorithms-mstg-crypto-4 Files: com/amazon/android/apay/commonlibrary/instrumentationlib/encryptor/a.java, line(s) 78 com/amazon/apay/instrumentation/encryptor/Encryptor.java, line(s) 81 com/nimbusds/jose/crypto/impl/RSA_OAEP.java, line(s) 21,31 com/onmobile/rbtsdkui/util/StringEncrypter.java, line(s) 26,44 com/tom_roush/pdfbox/pdmodel/encryption/MessageDigests.java, line(s) 20 com/ybl/ypp/sdk/DeRegisterUserActivity.java, line(s) 205 com/ybl/ypp/sdk/GetTokenActivity.java, line(s) 275 com/ybl/ypp/sdk/SendOutwardSMSActivity.java, line(s) 203,432,513
中危安全漏洞 文件可能包含硬编码的敏感信息,如用户名、密码、密钥等
文件可能包含硬编码的敏感信息,如用户名、密码、密钥等 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05d-Testing-Data-Storage.md#checking-memory-for-sensitive-data-mstg-storage-10 Files: com/adityabirlawellness/vifitsdk/repository/SharedPreferenceImpl.java, line(s) 16 com/adityabirlawellness/vifitsdk/utility/EncryptionHelper.java, line(s) 13,17 com/adobe/marketing/mobile/launch/rulesengine/json/JSONDefinition.java, line(s) 250 com/adobe/marketing/mobile/reactnative/target/RCTAEPTargetModule.java, line(s) 24 com/amazonaws/mobileconnectors/remoteconfiguration/internal/AttributesImpl.java, line(s) 82 com/amplitude/core/utilities/EventsFileManager.java, line(s) 151,152 com/amplitude/id/IdentityConfiguration.java, line(s) 96 com/appsflyer/reactnative/RNAppsFlyerConstants.java, line(s) 36,27 com/bugsmirror/defender/api/DefenderThreatAPI.java, line(s) 44,42 com/clevertap/android/pushtemplates/PTConstants.java, line(s) 10,20,31,32,43,66 com/clevertap/android/sdk/Constants.java, line(s) 61,22,59,82,90,112,111,109,99,107,113,116,141,207,304,296,23,305,337,62,55,74,349,126,127,142 com/clevertap/android/sdk/inapp/InAppController.java, line(s) 74,78 com/clevertap/android/sdk/inapp/data/InAppResponseAdapter.java, line(s) 35,30 com/clevertap/android/sdk/inapp/store/preference/LegacyInAppStore.java, line(s) 18 com/clevertap/android/sdk/product_config/CTProductConfigConstants.java, line(s) 13 com/clevertap/android/sdk/product_config/DefaultXmlParser.java, line(s) 12 com/heanoria/library/reactnative/locationenabler/AndroidLocationEnablerModule.java, line(s) 49,52 com/microsoft/codepush/react/CodePushTelemetryManager.java, line(s) 12,17,21,14,16,18,19,20,22 com/mventus/selfcare/activity/shortcut/RNAppShortcutsModule.java, line(s) 54,53,52,50,51,49 com/onmobile/rbtsdkui/http/api_action/dtos/AssetDTO.java, line(s) 318 com/onmobile/rbtsdkui/http/cache/userdb/UserSettingDBUtilsManager.java, line(s) 24,42 com/rollbar/api/payload/data/Person.java, line(s) 111 com/soasta/mpulse/core/config/MPConfig.java, line(s) 41,42,273 com/sudoplz/rninappupdates/SpReactNativeInAppUpdatesModule.java, line(s) 34,35 com/yupptv/ott/utils/NavigationConstants.java, line(s) 117 in/juspay/trident/data/AuthenticationRequestParameters.java, line(s) 158 in/juspay/trident/security/d.java, line(s) 68
中危安全漏洞 IP地址泄露
IP地址泄露 Files: com/clevertap/android/pushtemplates/BuildConfig.java, line(s) 7 com/clevertap/android/sdk/BuildConfig.java, line(s) 7 com/nimbusds/jose/jwk/Curve.java, line(s) 19,20,23,24,25
中危安全漏洞 应用程序使用SQLite数据库并执行原始SQL查询。原始SQL查询中不受信任的用户输入可能会导致SQL注入。敏感信息也应加密并写入数据库
应用程序使用SQLite数据库并执行原始SQL查询。原始SQL查询中不受信任的用户输入可能会导致SQL注入。敏感信息也应加密并写入数据库 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04h-Testing-Code-Quality.md#injection-flaws-mstg-arch-2-and-mstg-platform-2 Files: com/adobe/marketing/mobile/internal/eventhub/history/AndroidEventHistoryDatabase.java, line(s) 7,123 com/adobe/marketing/mobile/internal/util/SQLiteDatabaseHelper.java, line(s) 3,4,70 com/amazonaws/mobileconnectors/remoteconfiguration/internal/ConfigurationDb.java, line(s) 6,7,52,79,88,89,90,91,92,93 com/clevertap/android/sdk/db/DatabaseHelper.java, line(s) 6,7,8,122 com/mixpanel/android/mpmetrics/MPDbAdapter.java, line(s) 7,8,9,68,77,367,441 com/mventus/selfcare/activity/callblocking/spam_blocker/SpamCheck.java, line(s) 5,60,85 com/nozbe/watermelondb/WMDatabase.java, line(s) 5,6,7,8,45,119,147,177,226,227 com/onmobile/rbtsdkui/http/cache/userdb/UserSettingDBUtilsManager.java, line(s) 6,24,42 com/onmobile/rbtsdkui/http/cache/userdb/UserSettingsDatabaseManager.java, line(s) 4,5,28 com/parse/OfflineSQLiteOpenHelper.java, line(s) 3,7,8 com/parse/ParseSQLiteDatabase.java, line(s) 5,6,126 com/reactnativecommunity/asyncstorage/ReactDatabaseSupplier.java, line(s) 4,5,6,99 f/h.java, line(s) 4,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,38,39,40,41,42,43,46,49 f/i.java, line(s) 5,15,16,17
中危安全漏洞 不安全的Web视图实现。可能存在WebView任意代码执行漏洞
不安全的Web视图实现。可能存在WebView任意代码执行漏洞 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05h-Testing-Platform-Interaction.md#testing-javascript-execution-in-webviews-mstg-platform-5 Files: com/adityabirlawellness/vifitsdk/ui/TestPayment.java, line(s) 342,332 com/adobe/marketing/mobile/assurance/AssuranceWebViewSocket.java, line(s) 129,118 com/clevertap/android/sdk/inapp/CTInAppBaseFullHtmlFragment.java, line(s) 54,49 com/clevertap/android/sdk/inapp/CTInAppBasePartialHtmlFragment.java, line(s) 101,96 com/mventus/selfcare/activity/viweb/VICloudGameWebView.java, line(s) 132,80 com/mventus/selfcare/activity/viweb/VINativeWebView.java, line(s) 314,218 com/mventus/selfcare/activity/viweb/VIOnMobileWebView.java, line(s) 409,268 com/mventus/selfcare/activity/viweb/VIUPIIntentWebView.java, line(s) 356,348 com/paytmpayments/customuisdk/transaction/PayFragment.java, line(s) 265,263 com/paytmpayments/customuisdk/webRedirection/PaytmWebView.java, line(s) 189,186 com/viapps/viappwebview/ESportWebActivity.java, line(s) 344,231,354 com/viapps/viappwebview/NPDWebActivity.java, line(s) 397,266,412 com/yupptv/ott/MoviesWebViewActivity.java, line(s) 695,691 in/juspay/hypersdk/core/DynamicUI.java, line(s) 178,224,310,176 in/juspay/hypersdk/safe/Godel.java, line(s) 342,598,592 in/juspay/trident/jseval/a.java, line(s) 117,115 one/upswing/sdk/j2.java, line(s) 297,262
中危安全漏洞 应用程序可以读取/写入外部存储器,任何应用程序都可以读取写入外部存储器的数据
应用程序可以读取/写入外部存储器,任何应用程序都可以读取写入外部存储器的数据 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05d-Testing-Data-Storage.md#external-storage Files: com/RNFetchBlob/RNFetchBlobFS.java, line(s) 173,199,133,168,180,181,191,192,193,194,195,196,197,198 com/RNFetchBlob/Utils/PathResolver.java, line(s) 44 com/learnium/RNDeviceInfo/RNDeviceModule.java, line(s) 434 com/lwansbrough/RCTCamera/RCTCameraModule.java, line(s) 165,204 com/reactnativecommunity/rctaudiotoolkit/AudioPlayerModule.java, line(s) 109 com/reactnativecommunity/webview/RNCWebViewModuleImpl.java, line(s) 229 com/rnfs/RNFSManager.java, line(s) 442,431,433,436,460 com/yupptv/ott/OTTApplication.java, line(s) 213 in/juspay/trident/core/h.java, line(s) 588 io/invertase/firebase/utils/ReactNativeFirebaseUtilsModule.java, line(s) 111,120,121,122 io/sentry/android/core/DeviceInfoUtil.java, line(s) 301,283
中危安全漏洞 应用程序创建临时文件。敏感信息永远不应该被写进临时文件
应用程序创建临时文件。敏感信息永远不应该被写进临时文件 Files: com/hopding/pdflib/PDFLibModule.java, line(s) 69 com/journeyapps/barcodescanner/CaptureManager.java, line(s) 123 com/lwansbrough/RCTCamera/RCTCameraModule.java, line(s) 216,219 com/parse/ParseCommandCache.java, line(s) 449 com/reactnativecommunity/webview/RNCWebViewModuleImpl.java, line(s) 229 com/rnmaps/maps/FileUtil.java, line(s) 25 com/rnmaps/maps/MapModule.java, line(s) 265 com/tom_roush/pdfbox/io/ScratchFile.java, line(s) 34
中危安全漏洞 MD5是已知存在哈希冲突的弱哈希
MD5是已知存在哈希冲突的弱哈希 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#identifying-insecure-andor-deprecated-cryptographic-algorithms-mstg-crypto-4 Files: com/RNFetchBlob/RNFetchBlobUtils.java, line(s) 29 com/clevertap/android/sdk/cryption/AESCrypt.java, line(s) 55 com/parse/ParseDigestUtils.java, line(s) 14 com/parse/ParseRESTCommand.java, line(s) 208,208 com/tom_roush/pdfbox/pdfwriter/COSWriter.java, line(s) 745 com/tom_roush/pdfbox/pdmodel/encryption/MessageDigests.java, line(s) 12 f/b.java, line(s) 107,115 in/juspay/hypersdk/security/EncryptionHelper.java, line(s) 226,246
中危安全漏洞 应用程序使用不安全的随机数生成器
应用程序使用不安全的随机数生成器 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#weak-random-number-generators Files: com/adobe/marketing/mobile/services/ui/AEPMessage.java, line(s) 22 com/amplitude/core/utilities/EventsFileManager.java, line(s) 17 com/clevertap/android/pushtemplates/content/PendingIntentFactory.java, line(s) 18 com/clevertap/android/pushtemplates/content/RatingContentView.java, line(s) 12 com/clevertap/android/sdk/pushnotification/LaunchPendingIntentFactory.java, line(s) 14 com/onmobile/rbtsdkui/activities/MusicLanguageActivity.java, line(s) 28 com/parse/LocalIdManager.java, line(s) 5 com/parse/ParsePushBroadcastReceiver.java, line(s) 18 com/yupptv/ott/epg/misc/MockDataService.java, line(s) 5 com/yupptv/ott/utils/NavigationUtils.java, line(s) 117
中危安全漏洞 可能存在跨域漏洞。在 WebView 中启用从 URL 访问文件可能会泄漏文件系统中的敏感信息
可能存在跨域漏洞。在 WebView 中启用从 URL 访问文件可能会泄漏文件系统中的敏感信息 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05h-Testing-Platform-Interaction.md#static-analysis-6 Files: com/adityabirlawellness/vifitsdk/ui/TestPayment.java, line(s) 334,332 com/mventus/selfcare/activity/viweb/VICloudGameWebView.java, line(s) 78,80 com/mventus/selfcare/activity/viweb/VINativeWebView.java, line(s) 212,218 com/mventus/selfcare/activity/viweb/VIOnMobileWebView.java, line(s) 262,268 com/mventus/selfcare/activity/viweb/VIUPIIntentWebView.java, line(s) 342,348 com/viapps/viappwebview/ESportWebActivity.java, line(s) 229,231,354 com/viapps/viappwebview/NPDWebActivity.java, line(s) 260,266,412 com/viapps/viappwebview/UniversalWebActivity.java, line(s) 100,102,203 in/juspay/hypersdk/safe/Godel.java, line(s) 605,592
中危安全漏洞 此应用程序可能会请求root(超级用户)权限
此应用程序可能会请求root(超级用户)权限 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05j-Testing-Resiliency-Against-Reverse-Engineering.md#testing-root-detection-mstg-resilience-1 Files: com/scottyab/rootbeer/Const.java, line(s) 9,9,9,11,9,11,9,9 io/sentry/android/core/internal/util/RootChecker.java, line(s) 38,38,38,38,38
中危安全漏洞 Firebase远程配置已启用
Firebase远程配置URL ( https://firebaseremoteconfig.googleapis.com/v1/projects/952492006042/namespaces/firebase:fetch?key=AIzaSyACoHSINcOWeKGzSskyesJtaQTKVawaZpU ) 已启用。请确保这些配置不包含敏感信息。响应内容如下所示:
{
"entries": {
"Recharge": "99",
"ShowTopBanner": "true"
},
"state": "UPDATE",
"templateVersion": "14"
}
中危安全漏洞 此应用可能包含硬编码机密信息
从应用程序中识别出以下机密确保这些不是机密或私人信息 凭证信息=> "XIOMI_APP_KEY" : "@7F1406DB" 凭证信息=> "XIOMI_APP_ID" : "@7F1406DA" 凭证信息=> "publisher_key" : "b642b4217b34b1e8d3bd915fc65c4452" 凭证信息=> "com.google.android.geo.API_KEY" : "@7F140308" 凭证信息=> "io.branch.sdk.BranchKey" : "key_live_kCjeldO3QmHRHF9752nlqggeFriPjGGw" AdMob广告平台的=> "com.google.android.gms.ads.APPLICATION_ID" : "@7F14007F" 凭证信息=> "io.branch.sdk.BranchKey.test" : "key_test_kqlappQ6NnVTTr2ZYYBgggnoyzeHbKI0" "CodePushDeploymentKey" : "2YzlOKQlBhlskAAEbR0yBUtt6yU8id_0" "admob_app_id" : "ca-app-pub-9749006816216292~3554518818" "cast_app_id_live" : "D3998A89" "cast_app_id_staging" : "D3998A89" "clevertap_token" : "43b-ab4" "com.google.firebase.crashlytics.mapping_file_id" : "b3847a0d459d418d835881eb4ab44d17" "facebook_app_id" : "316844072892077" "file_provider_authority" : "com.mventus.selfcare.activity.provider" "firebase_database_url" : "https://fusion-app-3328b.firebaseio.com" "freshchat_file_provider_authority" : "com.moviesandtv.provider" "google_api_key" : "AIzaSyACoHSINcOWeKGzSskyesJtaQTKVawaZpU" "google_app_id" : "1:952492006042:android:2c6d3118753644ccec1d23" "google_crash_reporting_api_key" : "AIzaSyACoHSINcOWeKGzSskyesJtaQTKVawaZpU" "library_zxingandroidembedded_author" : "JourneyApps" "library_zxingandroidembedded_authorWebsite" : "https://journeyapps.com/" "moengage_app_id" : "MRNQZ3CJR6ZPJWGHKUBI45U7" "password" : "Password" "showPassword" : "Show" "sslKey" : "sha256/ZEF0gwgFaLzs5HdysW4gqkYP2hxwtOYb3GhM+sSdfH0=" "vilite_file_provider_authority" : "com.vilite.provider" "xiomi_app_id" : "2882303761517634846" "xiomi_app_key" : "5231763416846" 2bb0e889-14c1-4b6b-bb52-ea98660e7ece 88b2d3af0e9b4ca5aae577f146d8a912 95d5595825c42f15985bc505300c47f8a5efcfad593d9116662af96b160a9766 8325710961489029985546751289520108179287853048861315594709205902480503199884419224438643760392947333078086511627871 66342e6a-221b-4be7-acdf-953a00dabf02 a69b1715-6126-4600-8af4-7ff8fb723cfe sha256/njN4rRG+22dNXAi+yb8e3UMypgzPUPHlv4+foULwl1g= 27580193559959705877849011840389048093056905856361568521428707301988689241309860865136260764883745107765439761230575 36134250956749795798585127919587881956611106672985015071877198253568414405109 FBA3AF4E7757D9016E953FB3EE4671CA2BD9AF725F9A53D52ED4A38EAAA08901 be0dea25-22fe-4e0b-9b8a-0bf5da93f0bf 39402006196394479212279040100143613805079739270465446667948293404245721771496870329047266088258938001861606973112316 3c5f4c28-5af5-41cf-9e63-d33a24d631bf 41058363725152142129326129780047268409114441015993725554835256314039467401291 1093849038073734274511112390766805569936207598951683748994586394495953116150735016013708737573759623248592132296706313309438452531591012912142327488478985984 54fe37b821d26d3ebaa2fa63fa3c1c4b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b9c0b46a5259459faeceef9ca1b169f6 8c61b8f5e970363f10f69d26332e65c5 b9ed44fa-2bf5-4890-acde-87fbafdf73dd 7004ea32803662f4c69ba259c75118ed 797054f7ae1c591a346cb70ec81d7148a93ebd20373ad77bfbaa0213d99bc92a 5a19174c-d4dc-436e-867c-866e396b4904 f3a8b2e1d9c4a5e6b7d8f4a9e1c2b3d4 8a2c53270b5b46a058b83f58284c92f8 115792089237316195423570985008687907853269984665640564039457584007908834671663 b374f7d3-48ff-484e-924a-4eb8ee059b86 6864797660130609714981900799081393217269435300143305409394463459185543183397656052122559640661454554977296311391480858037121987999716643812574028291115057148 04148c216f3344758a87390652d434c9 2LHYpyDYp9mG2KrYrtin2Kgg2qnZhtuM2K8g24zaqSDZgdin24zZhA== 2661740802050217063228768716723360960729859168756973147706671368418802944996427808491545080627771902352094241225065558662157113545570916814161637315895999846 3757180025770020463545507224491183603594455134769762486694567779615544477440556316691234405012945539562144444537289428522585666729196580810124344277578376784 JML70T2CRVD28jvOs7jT+l6fC+nkIew7xkBU3i0oVw4= f6feefbb-ec15-40fc-a95d-920d767d36f0 32670510020758816978083085130507043184471273380659243275938904335757337482424 26247035095799689268623156744566981891852923491109213387815615900925518854738050089022388053975719786650872476732087 7ZWY64KY7J2YIO2MjOydvOydhCDshKDtg50= 39402006196394479212279040100143613805079739270465446667948293404245721771496870329047266088258938001861606973112319 747da056-476c-4296-a7c4-7e853e235ef0 115792089210356248762697446949407573530086143415290314195533631308867097853951 60cee651-1428-4f78-9174-00e9403995e6 27917511-84f4-4236-b22a-b06f72304668 d22e49d9-9544-4148-baf8-0ad3d26bc2b4 255fe3f7-bc0d-47ea-b55e-8a74d174c9f3 959b6a53-5841-400b-aa3e-a9655318f152 48439561293906451759052585252797914202762949526041747995844080717082404635286 99541bef-5031-48f9-be9e-1c461ea7f7a9 6864797660130609714981900799081393217269435300143305409394463459185543183397656052122559640661454554977296311391480858037121987999716643812574028291115057151 2f19adeb284eb36f7f07786152b9a1d14b21653203ad0b04ebbf9c73ab6d7625 55066263022277343669578718895168534326250603453777594175500187360389116729240 115792089210356248762697446949407573529996955224135760342422259061068512044369 151f7841-2a97-4361-9ec8-b289fdca61d0 db2b94fc37204774aea40e7f07a247ab 3dcc896b24aa4817bd0711bc5a37331d 3d8e1329-268b-4f56-8e8d-65043c1fdfba 115792089237316195423570985008687907852837564279074904382605163141518161494337 ba2f02d671c44fbbbba3004f3b1b1c2f adf5a1cc-1322-44ed-b2fa-1924b678ee69 9d7f88d5391175507147c65fbd3308ad2c4b04c4d2317e08dda9837065138352 d4f7e6da0b982ba1ea374fb9ea68ae6a 39402006196394479212279040100143613805079739270465446667946905279627659399113263569398956308152294913554433653942643 116f90eee124062e2ca9c8efeb54802c34d963a0 350b01bc484144b5975c6b923b580cb6 6864797660130609714981900799081393217269435300143305409394463459185543183397655394245057746333217197532963996371363321113864768612440380340372808892707005449 fcc24cd8e725572e8604d30fb4440353 2KfbjNqpINmB2KfYptmEINmF24zauiDYs9uSINin2YbYqtiu2KfYqCDaqdix24zaug== 352ef73e-5bb9-498a-96c4-394f81650685 7d6ae6e1dbbe78de693e3ae6aa451c634d2f1b2ff9911b8073d87e002ac704e7 c90abaaa-0c89-441b-9266-410633538da3 723bbea9467f47d8bf105f14a1afd73c MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCng5Fq2Yv6wvmPeklMaBG2O1hBjVevmuuBqWx4CqSN9tN1TMUtpfe1rsjtoS6Wr+qsrCcGxDGTD7iQw4MASijkwrmPbh3dPRprh5QmL0mmWZJ05A3YWPvB3tWxC0AkhtVQvQ9Z56NfDyxe4QoAVHZs/swgmGToToXWE4UinBZ78QIDAQAB E3F9E1E0CF99D0E56A055BA65E241B3399F7CEA524326B0CDD6EC1327ED0FDC1 22d90a0e-b61b-4941-afd2-cf40061ea921 FFE391E0EA186D0734ED601E4E70E3224B7309D48E2075BAC46D8C667EAE7212 330b587f-6d21-40a7-9070-9749369623a5 a47625fa-743e-4f0e-adbf-9761c54e8e1d 7bc08a64c14608d6187563f33208b9a17e4305c9bce4c2e76c1fc7f23c9b206d 115792089210356248762697446949407573530086143415290314195533631308867097853948 83fbdac1-3a6f-48b7-aa93-171ab6cbcc29 3BAF59A2E5331C30675FAB35FF5FFF0D116142D3D4664F1C3CB804068B40614F 55157e27-1318-46f2-bb28-13eab10074fe
安全提示信息 应用程序记录日志信息,不得记录敏感信息
应用程序记录日志信息,不得记录敏感信息 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05d-Testing-Data-Storage.md#logs Files: cl/json/RNSharePathUtil.java, line(s) 40 cl/json/social/SingleShareIntent.java, line(s) 25,28,37 com/adobe/marketing/mobile/Assurance.java, line(s) 15,26 com/adobe/marketing/mobile/CompletionCallbacksManager.java, line(s) 38,56 com/adobe/marketing/mobile/DataMarshaller.java, line(s) 78 com/adobe/marketing/mobile/Edge.java, line(s) 26,39,57,73,77,82 com/adobe/marketing/mobile/EdgeConsentUpdate.java, line(s) 22 com/adobe/marketing/mobile/EdgeDataEntity.java, line(s) 36,63 com/adobe/marketing/mobile/EdgeExtension.java, line(s) 77,105,180,239,165,234,244,246 com/adobe/marketing/mobile/EdgeHitProcessor.java, line(s) 63,113,131,137,150,199,201,48,120,178 com/adobe/marketing/mobile/EdgeNetworkService.java, line(s) 73,86,124,128,138,142,167,217,223,230,234,236,239,258,260,268,272,276,280,289,208,110,155,185,246 com/adobe/marketing/mobile/EdgeProperties.java, line(s) 33,46 com/adobe/marketing/mobile/EdgeRequest.java, line(s) 16,29 com/adobe/marketing/mobile/EdgeState.java, line(s) 52,58,62,68,99,79 com/adobe/marketing/mobile/Event.java, line(s) 73 com/adobe/marketing/mobile/ExperienceEvent.java, line(s) 62 com/adobe/marketing/mobile/Extension.java, line(s) 52 com/adobe/marketing/mobile/Identity.java, line(s) 30,69,83,97,129,144 com/adobe/marketing/mobile/KonductorConfig.java, line(s) 27 com/adobe/marketing/mobile/LocalNotificationHandler.java, line(s) 94,111,132,315,179,190,221,290,297 com/adobe/marketing/mobile/MobileCore.java, line(s) 76,270,336,339,443,84,92,102,112,120,124,140,173,198,236,264,281,283,291,327,333,370,378,398,432,456,463,372,268 com/adobe/marketing/mobile/NetworkResponseHandler.java, line(s) 63,145,163,241,246,264,269,312,122,92,124,201,258,290 com/adobe/marketing/mobile/Places.java, line(s) 70,115,181,197,240,162,106,145,159,229,233,255 com/adobe/marketing/mobile/RequestBuilder.java, line(s) 110,142,146,151,160,67 com/adobe/marketing/mobile/StateMetadata.java, line(s) 16,33,41 com/adobe/marketing/mobile/StoreResponsePayload.java, line(s) 25,34,38,42,51,77 com/adobe/marketing/mobile/StoreResponsePayloadManager.java, line(s) 23,32,36,41,54,59,76,86,90 com/adobe/marketing/mobile/Target.java, line(s) 105,127,249,255,259,265,269,91,133,152,183,214,275,292,312,369,380,396,414 com/adobe/marketing/mobile/UserProfile.java, line(s) 26,30,78,89,69 com/adobe/marketing/mobile/Utils.java, line(s) 23,39,46 com/adobe/marketing/mobile/V4ToV5Migration.java, line(s) 126,135,144,151,164,180,186,211,215,224,229,248,273,287,294,311,318,321,328,332,334,336,339,341,170 com/adobe/marketing/mobile/VisitorID.java, line(s) 42 com/adobe/marketing/mobile/assurance/AssuranceBlob.java, line(s) 105,98 com/adobe/marketing/mobile/assurance/AssuranceComponentRegistry.java, line(s) 45 com/adobe/marketing/mobile/assurance/AssuranceConnectionDataStore.java, line(s) 19,26,31 com/adobe/marketing/mobile/assurance/AssuranceConnectionStatusUI.java, line(s) 27,32,39,47,79 com/adobe/marketing/mobile/assurance/AssuranceErrorDisplayActivity.java, line(s) 33,37 com/adobe/marketing/mobile/assurance/AssuranceExtension.java, line(s) 91,179,200,236,240,52,78,118,196,204,210,249 com/adobe/marketing/mobile/assurance/AssuranceFloatingButton.java, line(s) 38,71,61,148 com/adobe/marketing/mobile/assurance/AssuranceFullScreenTakeover.java, line(s) 46,57,111,168,179,186,191,119 com/adobe/marketing/mobile/assurance/AssuranceFullScreenTakeoverActivity.java, line(s) 63,76,55 com/adobe/marketing/mobile/assurance/AssuranceIOUtils.java, line(s) 75 com/adobe/marketing/mobile/assurance/AssuranceListenerHubPlacesRequests.java, line(s) 24,33,39 com/adobe/marketing/mobile/assurance/AssuranceListenerHubPlacesResponses.java, line(s) 28 com/adobe/marketing/mobile/assurance/AssurancePinCodeEntryProvider.java, line(s) 62,123,136,140,147,158,33,42,70,72,99,128 com/adobe/marketing/mobile/assurance/AssurancePluginConfigSwitcher.java, line(s) 61,58 com/adobe/marketing/mobile/assurance/AssurancePluginFakeEventGenerator.java, line(s) 24,28,32,36 com/adobe/marketing/mobile/assurance/AssurancePluginLogForwarder.java, line(s) 54,60,92,97 com/adobe/marketing/mobile/assurance/AssurancePluginManager.java, line(s) 34 com/adobe/marketing/mobile/assurance/AssurancePluginScreenshot.java, line(s) 23,46,56,70 com/adobe/marketing/mobile/assurance/AssuranceQuickConnectActivity.java, line(s) 293,298 com/adobe/marketing/mobile/assurance/AssuranceSession.java, line(s) 101,107,160,164,171,175,179,226,310,241,243,245,266,274,305 com/adobe/marketing/mobile/assurance/AssuranceSessionOrchestrator.java, line(s) 176,196,198,216,234,246,146,223,227,242 com/adobe/marketing/mobile/assurance/AssuranceSessionPresentationManager.java, line(s) 72,84 com/adobe/marketing/mobile/assurance/AssuranceStateManager.java, line(s) 50,176,184,227,242,215,220,43,63,68 com/adobe/marketing/mobile/assurance/AssuranceWebViewSocket.java, line(s) 94,110,114,124,132,149,157,184,212 com/adobe/marketing/mobile/assurance/EventQueueWorker.java, line(s) 56,62,52 com/adobe/marketing/mobile/assurance/EventStitcher.java, line(s) 85 com/adobe/marketing/mobile/assurance/InboundEventQueueWorker.java, line(s) 59,66 com/adobe/marketing/mobile/assurance/OutboundEventQueueWorker.java, line(s) 134,93,111,46,81,102 com/adobe/marketing/mobile/assurance/QuickConnectDeviceCreator.java, line(s) 72 com/adobe/marketing/mobile/assurance/QuickConnectManager.java, line(s) 112 com/adobe/marketing/mobile/edge/consent/Consent.java, line(s) 27,60,33 com/adobe/marketing/mobile/edge/consent/ConsentExtension.java, line(s) 25,64,69,79,84,96,101,106 com/adobe/marketing/mobile/edge/consent/ConsentManager.java, line(s) 41,30,48 com/adobe/marketing/mobile/edge/consent/Utils.java, line(s) 16 com/adobe/marketing/mobile/edge/identity/ECID.java, line(s) 43 com/adobe/marketing/mobile/edge/identity/Identity.java, line(s) 29,35,46,63,69,82,92,102,124,127,148 com/adobe/marketing/mobile/edge/identity/IdentityExtension.java, line(s) 80,119,223 com/adobe/marketing/mobile/edge/identity/IdentityItem.java, line(s) 33,36 com/adobe/marketing/mobile/edge/identity/IdentityMap.java, line(s) 19,157,159,194,196 com/adobe/marketing/mobile/edge/identity/IdentityProperties.java, line(s) 21,23,88 com/adobe/marketing/mobile/edge/identity/IdentityState.java, line(s) 43,47,70,74,80,88,147 com/adobe/marketing/mobile/edge/identity/IdentityStorageManager.java, line(s) 23,41,47,56,36,54 com/adobe/marketing/mobile/edge/identity/URLUtils.java, line(s) 31 com/adobe/marketing/mobile/identity/IdentityExtension.java, line(s) 260,268,272,278,282,316,467,512,637,684,688,692,714,739,1012,1038,1043,1045,1065,1070,199,417,419 com/adobe/marketing/mobile/identity/IdentityHitsProcessing.java, line(s) 29,41,45,48,57,74,89,92 com/adobe/marketing/mobile/internal/configuration/ConfigurationDownloader.java, line(s) 46,49,80,93 com/adobe/marketing/mobile/internal/configuration/ConfigurationExtension.java, line(s) 158,169,190,267,299,179 com/adobe/marketing/mobile/internal/configuration/ConfigurationRulesManager.java, line(s) 33,38,54,62,67,76,85,101 com/adobe/marketing/mobile/internal/configuration/ConfigurationStateManager.java, line(s) 97,122,148,163,187,193,294,305,324,154 com/adobe/marketing/mobile/internal/eventhub/EventHub$clearSharedState$callable$1.java, line(s) 18,22 com/adobe/marketing/mobile/internal/eventhub/EventHub$registerResponseListener$1.java, line(s) 63 com/adobe/marketing/mobile/internal/eventhub/EventHub.java, line(s) 183,194,232,258,275,395,519,621,739,757,217,243,255,283,362,378,382,474,514,537,559,626,663,669,735 com/adobe/marketing/mobile/internal/eventhub/ExtensionContainer.java, line(s) 114,129,156,167,176,187 com/adobe/marketing/mobile/internal/eventhub/ExtensionExtKt.java, line(s) 56 com/adobe/marketing/mobile/internal/eventhub/ExtensionListenerContainer.java, line(s) 38 com/adobe/marketing/mobile/internal/eventhub/ResponseListenerContainer.java, line(s) 49 com/adobe/marketing/mobile/internal/eventhub/history/AndroidEventHistory.java, line(s) 46,100,102,118 com/adobe/marketing/mobile/internal/eventhub/history/AndroidEventHistoryDatabase.java, line(s) 43,56,59,83,105,128 com/adobe/marketing/mobile/internal/util/FileUtils.java, line(s) 58,67,79,91,108,121,125,152,171,194 com/adobe/marketing/mobile/internal/util/SQLiteDatabaseHelper.java, line(s) 59,82,88,95,37,73,111 com/adobe/marketing/mobile/internal/util/StringEncoder.java, line(s) 43 com/adobe/marketing/mobile/internal/util/UrlEncoder.java, line(s) 57 com/adobe/marketing/mobile/launch/rulesengine/HistoricalEventsQueryingKt.java, line(s) 40 com/adobe/marketing/mobile/launch/rulesengine/LaunchRulesConsequence.java, line(s) 53,57,75,80,85,94,111,120,124,156 com/adobe/marketing/mobile/launch/rulesengine/LaunchTokenFinder.java, line(s) 109,131,137 com/adobe/marketing/mobile/launch/rulesengine/download/RulesLoader.java, line(s) 71,75,79,84,88 com/adobe/marketing/mobile/launch/rulesengine/download/RulesZipProcessingHelper.java, line(s) 33,63,73,78,89,95 com/adobe/marketing/mobile/launch/rulesengine/json/GroupCondition.java, line(s) 39 com/adobe/marketing/mobile/launch/rulesengine/json/HistoricalCondition.java, line(s) 40 com/adobe/marketing/mobile/launch/rulesengine/json/JSONCondition.java, line(s) 58,61 com/adobe/marketing/mobile/launch/rulesengine/json/JSONRule.java, line(s) 47,83 com/adobe/marketing/mobile/launch/rulesengine/json/JSONRuleRoot.java, line(s) 45 com/adobe/marketing/mobile/launch/rulesengine/json/JSONRulesParser.java, line(s) 37 com/adobe/marketing/mobile/launch/rulesengine/json/MatcherCondition.java, line(s) 57,87 com/adobe/marketing/mobile/lifecycle/LifecycleExtension.java, line(s) 84,89,87 com/adobe/marketing/mobile/lifecycle/LifecycleMetricsBuilder.java, line(s) 28,31,39,87 com/adobe/marketing/mobile/lifecycle/LifecycleSession.java, line(s) 43,47,66,81 com/adobe/marketing/mobile/lifecycle/LifecycleState.java, line(s) 35,87 com/adobe/marketing/mobile/lifecycle/LifecycleTimerState.java, line(s) 48,29,69 com/adobe/marketing/mobile/lifecycle/LifecycleV2DataStoreCache.java, line(s) 15 com/adobe/marketing/mobile/lifecycle/LifecycleV2MetricsBuilder.java, line(s) 18,40,56,78 com/adobe/marketing/mobile/lifecycle/XDMLifecycleApplication.java, line(s) 93 com/adobe/marketing/mobile/lifecycle/XDMLifecycleEnvironment.java, line(s) 48 com/adobe/marketing/mobile/optimize/DecisionScope.java, line(s) 19,26,52,61,66,70,75,80,84,89,94 com/adobe/marketing/mobile/optimize/Offer.java, line(s) 100,115,122,136,139,176,142 com/adobe/marketing/mobile/optimize/Optimize.java, line(s) 44,55,140,150 com/adobe/marketing/mobile/optimize/OptimizeExtension.java, line(s) 66,119,133,145,159,170,192,207,216,222,243,249,332,340,80,122,162,184,235,319,329 com/adobe/marketing/mobile/optimize/OptimizeUtils.java, line(s) 19 com/adobe/marketing/mobile/optimize/Proposition.java, line(s) 35,41,46,63 com/adobe/marketing/mobile/places/PlacesConfiguration.java, line(s) 20,27,34,42,49 com/adobe/marketing/mobile/places/PlacesDispatcher.java, line(s) 100,103,113,116,126,134,137,61 com/adobe/marketing/mobile/places/PlacesExtension.java, line(s) 44,69,79,94,103,118,129,138,160,169,174,199,230 com/adobe/marketing/mobile/places/PlacesQueryService.java, line(s) 31,36,100,129,155,51,54,58 com/adobe/marketing/mobile/places/PlacesState.java, line(s) 95,105,124,73,87,97,107,115,140,192,243,274,279,291,307,326 com/adobe/marketing/mobile/places/PlacesUtil.java, line(s) 43,48 com/adobe/marketing/mobile/services/DataQueueService.java, line(s) 17,31,35,43,53 com/adobe/marketing/mobile/services/DeviceInfoService.java, line(s) 50,91,126,146,151,157,275,281,288,291 com/adobe/marketing/mobile/services/HttpConnection.java, line(s) 23,25,32,43,46,56,59,62,72,75,85,88 com/adobe/marketing/mobile/services/HttpConnectionHandler.java, line(s) 42,57,62,64,66,83,86,89,92,95,104,106,108,116,118,120,132,134,137 com/adobe/marketing/mobile/services/LocalDataStoreService.java, line(s) 12,17,25 com/adobe/marketing/mobile/services/NetworkService.java, line(s) 20,49,57,61,107 com/adobe/marketing/mobile/services/SQLiteDataQueue.java, line(s) 98,127,132,203,235,239,32,57,77,104,109,148,172,178,208 com/adobe/marketing/mobile/services/SharedPreferencesNamedCollection.java, line(s) 26,69,74,124 com/adobe/marketing/mobile/services/internal/caching/CacheFileManager.java, line(s) 47,59,66,76,80,86,97,101,106,148,153,166 com/adobe/marketing/mobile/services/internal/caching/FileCacheService.java, line(s) 21,35,43,57 com/adobe/marketing/mobile/services/ui/AEPMessage.java, line(s) 83,162,190,378,388,107,157,168,312 com/adobe/marketing/mobile/services/ui/AndroidUIService.java, line(s) 137,64,84,154,158,165 com/adobe/marketing/mobile/services/ui/FloatingButtonManager.java, line(s) 65,69,150,196,137,144,168,236 com/adobe/marketing/mobile/services/ui/FloatingButtonView.java, line(s) 105 com/adobe/marketing/mobile/services/ui/MessageFragment.java, line(s) 46,73,78,116,156,172,177,245,260,265,270 com/adobe/marketing/mobile/services/ui/MessageWebViewClient.java, line(s) 35,52,57,64 com/adobe/marketing/mobile/services/ui/MessageWebViewUtil.java, line(s) 173,180,146,150,156,161,203 com/adobe/marketing/mobile/services/ui/WebViewGestureListener.java, line(s) 51,66 com/adobe/marketing/mobile/services/ui/d.java, line(s) 7 com/adobe/marketing/mobile/services/ui/internal/MessagesMonitor.java, line(s) 24,43,50 com/adobe/marketing/mobile/signal/internal/SignalExtension.java, line(s) 88,100,97,111,115 com/adobe/marketing/mobile/signal/internal/SignalHitProcessor.java, line(s) 72,76,38,80,89 com/adobe/marketing/mobile/target/TargetExtension.java, line(s) 68,82,120,142,148,156,164,231,255,260,291,297,303,311,322,334,343,362,369,378,462,495,503,507,513,519,523,526,532,602,656,675,694,697,702,870,880,904,908,920,922,931,935,940,943,63,77,185,239,318,386,391,472,476,483,630,635,94,100,105,110,222,244,267,273,355,358,610,625,642,649,681,718,729,741,756,779,792,815 com/adobe/marketing/mobile/target/TargetOrder.java, line(s) 25,33,36 com/adobe/marketing/mobile/target/TargetParameters.java, line(s) 50,59,82,91 com/adobe/marketing/mobile/target/TargetPrefetch.java, line(s) 20,26 com/adobe/marketing/mobile/target/TargetPreviewFullscreenDelegate.java, line(s) 21,26,31,36 com/adobe/marketing/mobile/target/TargetPreviewManager.java, line(s) 41,49,70,88,103,111,121,155,160,185,209,214,218,80,92,206,128,132,137,143,149,197 com/adobe/marketing/mobile/target/TargetProduct.java, line(s) 22,30,33 com/adobe/marketing/mobile/target/TargetRequest.java, line(s) 28,40 com/adobe/marketing/mobile/target/TargetRequestBuilder.java, line(s) 170,250,283,404,108,124,162,190,230,243,261,333,371,412,453,463 com/adobe/marketing/mobile/target/TargetResponseParser.java, line(s) 22,29,59,64,161,184,187 com/adobe/marketing/mobile/target/TargetState.java, line(s) 91,222,268,270,273,281,283,286,42 com/adobe/marketing/mobile/target/TargetUtils.java, line(s) 52 com/adobe/marketing/mobile/userprofile/JSONUtils.java, line(s) 22,27 com/adobe/marketing/mobile/userprofile/ProfileData.java, line(s) 60,75 com/adobe/marketing/mobile/userprofile/UserProfileExtension.java, line(s) 36,52,73,158,163,171,177,182,186,203,214,223,227,43,60,131,152,197,229 com/adobe/marketing/mobile/util/SQLiteUtils.java, line(s) 20 com/adobe/marketing/mobile/util/SerialWorkDispatcher.java, line(s) 189,200,254,75 com/adobe/marketing/mobile/util/URLBuilder.java, line(s) 64,80 com/amazon/android/apay/commonlibrary/commonlib/arcus/AppConfigWorker.java, line(s) 34 com/amazonaws/mobileconnectors/remoteconfiguration/internal/AttributesImpl.java, line(s) 206 com/amplitude/common/jvm/ConsoleLogger.java, line(s) 35 com/babisoft/ReactNativeLocalization/ReactNativeLocalization.java, line(s) 45 com/clevertap/android/pushtemplates/PTPushNotificationReceiver.java, line(s) 25,37,43 com/clevertap/android/pushtemplates/PushTemplateNotificationHandler.java, line(s) 31,38 com/clevertap/android/pushtemplates/PushTemplateReceiver.java, line(s) 316,120,123,167,222,231,278,364,436,535,580,591,616 com/clevertap/android/pushtemplates/TemplateRenderer.java, line(s) 290,713,892,645,730 com/clevertap/android/pushtemplates/Utils.java, line(s) 107,111,163,224,280,411,429,498,531,254,263,416,507,511,151 com/clevertap/android/pushtemplates/checkers/IntSizeChecker.java, line(s) 28,33 com/clevertap/android/pushtemplates/checkers/JsonArraySizeChecker.java, line(s) 32 com/clevertap/android/pushtemplates/checkers/ListEqualSizeChecker.java, line(s) 33 com/clevertap/android/pushtemplates/checkers/ListSizeChecker.java, line(s) 33 com/clevertap/android/pushtemplates/checkers/StringSizeChecker.java, line(s) 34 com/clevertap/android/pushtemplates/content/AutoCarouselContentView.java, line(s) 56 com/clevertap/android/pushtemplates/content/ContentView.java, line(s) 44 com/clevertap/android/pushtemplates/content/ManualCarouselContentView.java, line(s) 61,94 com/clevertap/android/pushtemplates/content/PendingIntentFactory.java, line(s) 47 com/clevertap/android/pushtemplates/content/ProductDisplayLinearBigContentView.java, line(s) 148 com/clevertap/android/pushtemplates/styles/InputBoxStyle.java, line(s) 55 com/clevertap/android/pushtemplates/styles/TimerStyle.java, line(s) 41 com/clevertap/android/sdk/usereventlogs/UserEventLog.java, line(s) 81,81,81 com/dieam/reactnativepushnotification/helpers/ApplicationBadgeHelper.java, line(s) 26,28 com/drew/lang/CompoundException.java, line(s) 68 com/hopding/pdflib/factories/PDPageFactory.java, line(s) 87 com/horcrux/svg/Brush.java, line(s) 143,153 com/horcrux/svg/ClipPathView.java, line(s) 17 com/horcrux/svg/ImageView.java, line(s) 88 com/horcrux/svg/LinearGradientView.java, line(s) 60 com/horcrux/svg/PatternView.java, line(s) 106 com/horcrux/svg/RadialGradientView.java, line(s) 82 com/horcrux/svg/UseView.java, line(s) 28,55,74 com/horcrux/svg/VirtualView.java, line(s) 316,574,578,596 com/learnium/RNDeviceInfo/RNDeviceModule.java, line(s) 241,301,647,804,838,844,1050,1066 com/learnium/RNDeviceInfo/RNInstallReferrerClient.java, line(s) 39,98,125 com/learnium/RNDeviceInfo/resolver/DeviceIdResolver.java, line(s) 49,55 com/mixpanel/android/mpmetrics/AnalyticsMessages.java, line(s) 316,84,291,338,360,365,367,401,442,329 com/mixpanel/android/mpmetrics/MPConfig.java, line(s) 86,48,54,109,57 com/mixpanel/android/mpmetrics/MPDbAdapter.java, line(s) 317,332,336,356,406,433,473,518,159,172 com/mixpanel/android/mpmetrics/MixpanelAPI.java, line(s) 59,195,242 com/mixpanel/android/mpmetrics/PersistentIdentity.java, line(s) 75,77,91,98,106,123,133,135,153,155,168,88,127 com/mixpanel/android/mpmetrics/SessionMetadata.java, line(s) 33 com/mixpanel/android/util/HttpService.java, line(s) 29,57,64,68 com/mventus/selfcare/activity/shortcut/RNAppShortcutsModule.java, line(s) 118 com/mventus/selfcare/activity/simInfo/SimInfo.java, line(s) 148 com/onmobile/rbtsdkui/AppManager.java, line(s) 100,111,143,275,316 com/onmobile/rbtsdkui/sdkexception/RbtSdkInitialisationException.java, line(s) 12 com/onmobile/rbtsdkui/util/CrossPromoPayloadEncrypter.java, line(s) 26 com/oriserve/orichat/ApiClient.java, line(s) 48,27,52 com/oriserve/orichat/EventSender.java, line(s) 25,22,29 com/oriserve/orichat/OriChatActivity.java, line(s) 267,316,344,429,544,557,585 com/parse/ConnectivityNotifier.java, line(s) 50 com/parse/InstallationId.java, line(s) 23,36,39 com/parse/ManifestInfo.java, line(s) 63,76 com/parse/NetworkQueryController.java, line(s) 41,50 com/parse/ParseAnalytics.java, line(s) 32 com/parse/ParseDateFormat.java, line(s) 39 com/parse/ParseImpreciseDateFormat.java, line(s) 31 com/parse/ParseInstallation.java, line(s) 91 com/parse/ParseKeyValueCache.java, line(s) 74,107 com/parse/ParsePinningEventuallyQueue.java, line(s) 198,72 com/parse/ParsePushBroadcastReceiver.java, line(s) 101,121,133,140,136 com/parse/ParseRequest.java, line(s) 110 com/proyecto26/inappbrowser/RNInAppBrowser.java, line(s) 178,191 com/reactcommunity/rndatetimepicker/Common.java, line(s) 94 com/reactnativecommunity/asyncstorage/AsyncStorageModule.java, line(s) 52,84,154,190,204,218,232,243,248,264,294,299,315,348,362,376,394,399,404 com/reactnativecommunity/asyncstorage/ReactDatabaseSupplier.java, line(s) 46,51 com/reactnativecommunity/geolocation/AndroidLocationManager.java, line(s) 85 com/reactnativecommunity/webview/RNCWebView.java, line(s) 101 com/reactnativecommunity/webview/RNCWebViewClient.java, line(s) 202,174,191 com/rnmaps/maps/FileUtil.java, line(s) 52 com/scottyab/rootbeer/RootBeer.java, line(s) 35,51,64,179,190,78,103,165 com/scottyab/rootbeer/RootBeerNative.java, line(s) 13 com/soasta/mpulse/android/MPUtilities.java, line(s) 21,27,29,35 com/soasta/mpulse/android/MPulse.java, line(s) 107,133,165,50,179 com/soasta/mpulse/android/aspects/ActivityAspects.java, line(s) 48 com/soasta/mpulse/android/aspects/HttpClientAspect.java, line(s) 51,64,68,74 com/soasta/mpulse/android/aspects/HttpClientUtils.java, line(s) 42,54,59 com/soasta/mpulse/android/aspects/HttpEntityAspect.java, line(s) 51 com/soasta/mpulse/android/aspects/HttpResponseAspect.java, line(s) 53,54 com/soasta/mpulse/android/aspects/OkHttp3Aspect.java, line(s) 57,74,78,85,97,102,120,122,126,128,145,60,88,134,150,62 com/soasta/mpulse/android/aspects/OkHttp3AspectUtils.java, line(s) 28,30,51,53 com/soasta/mpulse/android/aspects/URLAspect.java, line(s) 63,67,78,89,109,111 com/soasta/mpulse/android/aspects/URLConnectionAspect.java, line(s) 78,127,140 com/soasta/mpulse/android/aspects/URLConnectionExceptionsAspect.java, line(s) 49,52 com/soasta/mpulse/android/beacons/MPApiNetworkRequestBeacon.java, line(s) 23,31,99 com/soasta/mpulse/android/beacons/MPAppErrorBeacon.java, line(s) 73 com/soasta/mpulse/android/beacons/MPAppLaunchBeacon.java, line(s) 30,45 com/soasta/mpulse/android/demographics/MPDemographics.java, line(s) 42,83 com/soasta/mpulse/android/demographics/MPGeoLocation.java, line(s) 25,63,80 com/soasta/mpulse/android/filter/MPFilterManager.java, line(s) 140,155,178,48,106,144,159 com/soasta/mpulse/android/intercept/MPInterceptDelegate.java, line(s) 44,53,66,73,98,101,141,211,224,238,260,266,284,289,291,294,297,337,341,356,364 com/soasta/mpulse/android/intercept/MPInterceptInputStream.java, line(s) 17,20,37,41,45,108 com/soasta/mpulse/android/network/MPNetworkErrorType.java, line(s) 35,41 com/soasta/mpulse/android/obfuscate/MPURLQueryStringObfuscator.java, line(s) 29,31,34 com/soasta/mpulse/core/MPNotificationCenter.java, line(s) 50,69 com/soasta/mpulse/core/MPulse.java, line(s) 45 com/soasta/mpulse/core/MPulseException.java, line(s) 25 com/soasta/mpulse/core/MPulseInternal.java, line(s) 65,117,125,142,159,167,215,367,370,390,404,414,515,525,560,569,41,42,78,89,109,134,151,181,225,254,260,326,331,359,376,421,478,489,503,519,542 com/soasta/mpulse/core/beacons/MPApiActionBeacon.java, line(s) 42,51,100,126,143,46,75,241,254,270,276,287 com/soasta/mpulse/core/beacons/MPApiCustomMetricBeacon.java, line(s) 44,33 com/soasta/mpulse/core/beacons/MPApiCustomTimerBeacon.java, line(s) 38,58 com/soasta/mpulse/core/beacons/MPBeacon.java, line(s) 36,132,156,162 com/soasta/mpulse/core/collection/MPBatch.java, line(s) 23,26,58 com/soasta/mpulse/core/collection/MPBatchTransport.java, line(s) 36,59,61,66,74,76,78 com/soasta/mpulse/core/collection/MPBeaconCollector.java, line(s) 87,126,132,134,138,158,170,193,233,263,284,329,331,333,335,337,340,343,348,356,396,503,525,570,578,616,639,653,655,673,689,690,707,712,239,306,346,641,663,699,604 com/soasta/mpulse/core/config/MPConfig.java, line(s) 104,117,178,209,231,239,285,413,423,460,124,129,384,392,91,94,97,113,196,203,400,437 com/soasta/mpulse/core/config/MPConfigDimension.java, line(s) 39 com/soasta/mpulse/core/config/MPConfigMetric.java, line(s) 34 com/soasta/mpulse/core/config/MPConfigPageGroup.java, line(s) 78 com/soasta/mpulse/core/config/MPConfigPageParams.java, line(s) 88,105,134,193 com/soasta/mpulse/core/config/MPConfigTimer.java, line(s) 73 com/soasta/mpulse/core/filter/MPFilterManager.java, line(s) 45,50,56,71,75,143,148,153,162,42,66 com/soasta/mpulse/core/session/MPSession.java, line(s) 39,44,72,113,51,105 com/sudoplz/rninappupdates/SpReactNativeInAppUpdatesModule.java, line(s) 59,212 com/viapps/viappwebview/ESportWebActivity$onCreate$3.java, line(s) 57 com/yupptv/ott/Assymetric/AdapterImpl.java, line(s) 72,149,194,196,208,246,58 com/yupptv/ott/FusionViliteMainActivity.java, line(s) 1220,1261,2413,2820,3197,3203,3232,3246,3437,4110,4204,4719,4722,4723,4726,5755,5756,5757,5762,5822,5823,5824,5825,5826,5836,5868,5869,5870,5880,6121,6132,7081,8155,8156,8157,8170,473,536,579,598,625,666,719,829,884,1046,1061,1069,1084,1088,1109,1159,1170,1617,1624,1651,1653,1923,2935,2987,3401,3417,3424,3444,3544,3826,3940,3953,4900,4963,5119,5121,5220,5385,5591,5619,5640,6195,6198,6319,6551,6707,6785,6787,7233,7477,7514,7637,7807,8061,8063,5611,5615 com/yupptv/ott/MoviesWebViewActivity.java, line(s) 731,732,849,850,851,856,184,394,494,667,814,888,894,899,927,933,934,1008,1012 com/yupptv/ott/OTTApplication.java, line(s) 256,289,291,296,263,273,478,500,516,529,542,589 com/yupptv/ott/SplashScreenActivity.java, line(s) 74,264,295,310,561,614,618,620,625,661 com/yupptv/ott/activity/LoadScreenActivity.java, line(s) 305,470 com/yupptv/ott/adapters/ChildAdapter.java, line(s) 31,36 com/yupptv/ott/adapters/ContentViewHolder.java, line(s) 44 com/yupptv/ott/adapters/DaypartPlayerAdapter.java, line(s) 426,759,764,778,782,791,802,813,817,823,603,610,760 com/yupptv/ott/adapters/FilterSettingsTabPagerAdapter.java, line(s) 81,84,128,131 com/yupptv/ott/adapters/ListRecyclerViewAdapter.java, line(s) 135,179,210,776,565,619,1027,1045 com/yupptv/ott/adapters/RecyclerViewAdapter.java, line(s) 377,379 com/yupptv/ott/adapters/r.java, line(s) 8 com/yupptv/ott/analytics/AnalyticsV2.java, line(s) 111,131,132 com/yupptv/ott/cloudmessaging/RichPushService.java, line(s) 48,79 com/yupptv/ott/cloudmessaging/RichPushWorkManager.java, line(s) 50,87 com/yupptv/ott/controllers/RowController.java, line(s) 236 com/yupptv/ott/epg/EPGFragment.java, line(s) 945,1373,420,628,1017,1059 com/yupptv/ott/epg/RecyclerEPGFragment.java, line(s) 248,323,327,356,374 com/yupptv/ott/fragments/ActionBottomSheetDialogFragment.java, line(s) 259,1492,2284,2345,2492,3398,3435,3470 com/yupptv/ott/fragments/CatchupDetailsFragment.java, line(s) 114 com/yupptv/ott/fragments/CreateProfilesFragment.java, line(s) 57,158 com/yupptv/ott/fragments/CustomFilterDialogFragment.java, line(s) 118 com/yupptv/ott/fragments/DetailsFragment.java, line(s) 755,171,257,260,475,575,580,586,599,762,768,779,847,873,891,1153,1175,1319,1393,1783,1793 com/yupptv/ott/fragments/GridFragment.java, line(s) 156,330,805,876,929 com/yupptv/ott/fragments/HomeFragment.java, line(s) 699,1219,1226,1539,346,462,650,675,694,863,876,879,1519,1624,1653,1819 com/yupptv/ott/fragments/LinearFragment.java, line(s) 243 com/yupptv/ott/fragments/MobileVerificationFragment.java, line(s) 150 com/yupptv/ott/fragments/NavigationFragment.java, line(s) 83,97 com/yupptv/ott/fragments/NewFilterFragment.java, line(s) 157,542,546,707,809,842,917 com/yupptv/ott/fragments/PaymentMainFragment.java, line(s) 65,141,169 com/yupptv/ott/fragments/PaymentsFragment.java, line(s) 105,720,728,729,751,810,811,856 com/yupptv/ott/fragments/ProfilesFragment.java, line(s) 145,152 com/yupptv/ott/fragments/SearchFragment.java, line(s) 206,210,229,239,266,465,468,636,727,728,740,1181,1212,1351 com/yupptv/ott/fragments/SearchFragmentNew.java, line(s) 213,720,723,945,1111,1112,1124,1529,1563,1599 com/yupptv/ott/fragments/ViewPagerFragment.java, line(s) 116,396,564,592 com/yupptv/ott/fragments/account/FragmentAppSettings.java, line(s) 295,296 com/yupptv/ott/fragments/account/ListFragment.java, line(s) 692,729,951,954,955,958,1036,1050,1254,348,803,934,1107,1120,1126,1365,1391,1405 com/yupptv/ott/fragments/account/OTTAccountFragment.java, line(s) 235,245,397 com/yupptv/ott/fragments/account/VideoQualityFragment.java, line(s) 116,117 com/yupptv/ott/fragments/onboarding/ChangeEmailFragment.java, line(s) 99 com/yupptv/ott/fragments/onboarding/ChangeMobileNoFragment.java, line(s) 193 com/yupptv/ott/fragments/onboarding/ForgotPassword.java, line(s) 135 com/yupptv/ott/fragments/onboarding/LanguageFragment.java, line(s) 159,177,193,265,288 com/yupptv/ott/fragments/onboarding/NewContentFilterFragment.java, line(s) 118,165 com/yupptv/ott/fragments/onboarding/OTPVerificationFragment.java, line(s) 198,201,160,523,532,549,558,745,885,1081,1163 com/yupptv/ott/fragments/onboarding/SignInFragment.java, line(s) 367,543,1120,1133,1134 com/yupptv/ott/fragments/onboarding/SignupFragment.java, line(s) 669,682,683 com/yupptv/ott/fragments/onboarding/SignupFragmentStep2.java, line(s) 527,530,778 com/yupptv/ott/fragments/payment/CouponsCodeFragment.java, line(s) 115 com/yupptv/ott/fragments/payment/OrderSummaryFragment.java, line(s) 68,273,281,282,304 com/yupptv/ott/fragments/payment/PackageFragment.java, line(s) 140,258,263,467,482,489,490 com/yupptv/ott/fragments/payment/PaymentGateWaysFragment.java, line(s) 76 com/yupptv/ott/fragments/payment/PaymentNewGatewaysFragment.java, line(s) 110,357,535 com/yupptv/ott/fragments/payment/UpdateCardFragment.java, line(s) 141 com/yupptv/ott/g.java, line(s) 7 com/yupptv/ott/messaging/receiver/OTPReceiver.java, line(s) 50 com/yupptv/ott/messaging/receiver/SMSBroadCastReceiver.java, line(s) 13 com/yupptv/ott/player/EventLogger.java, line(s) 100,105,110,115,120,125,129,134,158,171,178,182,278,282,286,303,355,382,384,391,395,446,519,522,525,529,532,534,593,606,613,623,90,271,414 com/yupptv/ott/player/ExoPlayerFragment.java, line(s) 665,1144,2069,2360,2372,2403,2408,2418,2441,2453,2465,2472,2771,2772,2852,6969,6971,6973,6978,7240,843,1514,2361,2392,2404,2409,2419,2442,2454,2469,2473,2857,2864,2903,2910,2916,3043,3081,3141,3302,3396,3428,3429,3430,3650,3652,3772,3833,3864,3873,4040,4041,4102,4228,4284,4614,4657,4842,5062,5140,5203,5607,5685,5776,5791,5799,6790,6796,6806,6899,6903,6907,6911,7005,7019,7153,7171,7220,7357,7615,8125,8253,1521,2318,2589 com/yupptv/ott/player/PlayerControlView.java, line(s) 304,307,323,334,357,360,580,1014,1141,524,579,1302,1391,1395,1624,1639 com/yupptv/ott/player/TrackSelectionHelper.java, line(s) 102,119,651,715,830 com/yupptv/ott/player/audiofocus/AudioEventManager.java, line(s) 30,87,95 com/yupptv/ott/player/detail/MetaInfoFragment.java, line(s) 1112,1118,1316,1379,1570 com/yupptv/ott/player/detail/UpNextFragment.java, line(s) 139 com/yupptv/ott/player/offlinedownload/DownloadTracker.java, line(s) 121,129,167,236,347,353 com/yupptv/ott/utils/ChromeCastUtils.java, line(s) 119 com/yupptv/ott/utils/CleverTap.java, line(s) 467,474 com/yupptv/ott/utils/DateHelper.java, line(s) 26,59,63,64 com/yupptv/ott/utils/JuspayUtility.java, line(s) 316,49,66,112,154,351 com/yupptv/ott/utils/MOUTracker.java, line(s) 84,90,95,100,114,115,129,137,142,153,154,157,164,181,188,195,186 com/yupptv/ott/utils/MOUTrackerAutoplay.java, line(s) 44,50,55,60,74,75,102,110,115,125,126,129,136,153,160,167,158 com/yupptv/ott/utils/MOUTrackerPreview.java, line(s) 44,50,55,60,74,75,102,110,115,125,126,129,136,153,160,167,158 com/yupptv/ott/utils/MOUTrackerSneakPeakBannerModel.java, line(s) 47,53,58,63,77,78,105,113,118,128,129,132,139,156,163,170,161 com/yupptv/ott/utils/MOUTrackerTopBannerPreview.java, line(s) 47,53,58,63,77,78,105,113,118,128,129,132,139,156,163,170,161,176 com/yupptv/ott/utils/NavigationUtils.java, line(s) 492,522,747,751,756,760,1132,1141,1147,1173,1185,1211,1212,1221,1227,1293,1307,1308,1340,1357,1363 com/yupptv/ott/utils/NetworkUtils.java, line(s) 34,46,52,59 com/yupptv/ott/utils/UtilsBase.java, line(s) 35 com/yupptv/ott/utils/ValidationUtils.java, line(s) 48,80 com/yupptv/ott/utils/YuppExoAnalyticsInterface.java, line(s) 25,35 com/yupptv/ott/viewmodels/AutoplayPosterModel.java, line(s) 474,761,766,780,784,793,804,815,819,825,1244,1269,652,659,762,974,1050,1051,1065,1241,1246,1296,1314 com/yupptv/ott/viewmodels/DaypartRowModel.java, line(s) 110,114,120 com/yupptv/ott/viewmodels/NativeAdModel.java, line(s) 168 com/yupptv/ott/viewmodels/PartnerAutoplayBannerModel.java, line(s) 216,219,226,235,332,350,528,1253,1278,1882,927,1255,1338,1344,1494 com/yupptv/ott/viewmodels/SneakPeakPagerBanner.java, line(s) 407,919,941,921,967,973 com/yupptv/ott/viewmodels/TopBannerRowModel.java, line(s) 632,605 com/yupptv/ott/viewmodels/TopPartnerBannerModel.java, line(s) 420,1041,1063,1043,1089,1095,1545 com/yupptv/ott/views/CustomMaterialSearchView.java, line(s) 504 com/yupptv/ott/views/RVPager.java, line(s) 868,1036,449,835,1003,1010,1026 com/yupptv/ott/views/ticketview/TicketView.java, line(s) 268,311,541 com/yupptv/ottsdk/MainActivity.java, line(s) 15,24,33 com/yupptv/ottsdk/OttSDK.java, line(s) 434,507,515,531,534,582,592,597,616,630,654,669,693,702,721,734,739,861,874,1119,1126,1191,1198,1214,1217 com/yupptv/ottsdk/managers/Application/AppManagerImp.java, line(s) 133,134,217,244,245,268,269,274,328,329,338,381,468,469,471,541,542,559,566,618 com/yupptv/ottsdk/managers/MediaCatalog/MediaCatalogManagerImpl.java, line(s) 210,1042,1623,106,117,193,204,231,251,253,455,953,962,1036,1073,1261,1296,1322,1333,1334,1350,1351,1356,1606,1607 com/yupptv/ottsdk/managers/Payment/PaymentManagerImpl.java, line(s) 152,613,83,94,135,146,171,186,188,312,566,572,607,637,780,888,912,913,929,930,935,1015,1022,1029,1036,1043,1128,1135 com/yupptv/ottsdk/managers/Preferences/PreferenceManagerImp.java, line(s) 99,106,111,403,409,452,551,557,563,595,621,627,633,639,645,651,662 com/yupptv/ottsdk/managers/Status/StatusManagerImp.java, line(s) 59,97,98,103 com/yupptv/ottsdk/managers/User/UserManagerImpl.java, line(s) 228,1044,94,136,151,162,211,222,246,261,263,484,988,994,1038,1067,1318,1384,1457,1458,1471,1472,1480,1535,1608,1760,1934,1954,1971,1982,2001,2086,2097 com/yupptv/ottsdk/managers/User/a.java, line(s) 8 com/yupptv/ottsdk/rest/DataHelper.java, line(s) 112,124,134,227,237,249,259,278,279,303 com/yupptv/ottsdk/rest/network/RestAdapter.java, line(s) 84,129,136,137,141,143,146,198,243,244,248,250,260,272,273,277,279,282,291,303,304,308,310,313,328,340,341,345,347,385,386,390,392,395,400,412 com/yupptv/ottsdk/utils/CipherUtils.java, line(s) 582,327,329,331,347,547,572,575 com/yupptv/ottsdk/utils/MorseCodeLib.java, line(s) 65 com/yupptv/playerinterface/YuppEventLogger.java, line(s) 128,108,132,239,240 com/zoontek/rnpermissions/RNPermissionsModuleImpl.java, line(s) 106 in/juspay/trident/ui/l.java, line(s) 27 io/invertase/firebase/common/ReactNativeFirebaseEventEmitter.java, line(s) 35 io/sentry/SystemOutLogger.java, line(s) 23,31,40 io/sentry/android/core/AndroidLogger.java, line(s) 84 io/sentry/transport/StdoutTransport.java, line(s) 26 org/greenrobot/eventbus/Logger.java, line(s) 40,45 org/joda/time/tz/DateTimeZoneBuilder.java, line(s) 320,321,346 org/wonday/orientation/OrientationModule.java, line(s) 44,70,80,83,91,252,282,274,264,290 timber/log/Timber.java, line(s) 206,224
安全提示信息 此应用程序将数据复制到剪贴板。敏感数据不应复制到剪贴板,因为其他应用程序可以访问它
此应用程序将数据复制到剪贴板。敏感数据不应复制到剪贴板,因为其他应用程序可以访问它 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04b-Mobile-App-Security-Testing.md#clipboard Files: com/clevertap/android/sdk/inbox/CTInboxButtonClickListener.java, line(s) 4,37 com/reactnativecommunity/clipboard/ClipboardModule.java, line(s) 4,246 in/juspay/hypersdk/core/JBridge.java, line(s) 7,522 io/branch/referral/ShareLinkManager.java, line(s) 6,168 one/upswing/sdk/q.java, line(s) 5,66,80
安全提示信息 应用程序可以写入应用程序目录。敏感信息应加密
应用程序可以写入应用程序目录。敏感信息应加密 Files: com/adityabirlawellness/vifitsdk/repository/SharedPreferenceImpl.java, line(s) 281,281 com/amazon/android/apay/commonlibrary/commonlib/utils/c.java, line(s) 38,87,38,87 com/amplitude/android/utilities/AndroidStorage.java, line(s) 79,82,79,82 com/onmobile/rbtsdkui/application/SharedPrefProviderKt.java, line(s) 23,23 com/onmobile/rbtsdkui/http/api_action/digital/SharedPrefPg.java, line(s) 41,41 in/juspay/hypersdk/services/Workspace.java, line(s) 75,75
安全提示信息 此应用侦听剪贴板更改。一些恶意软件也会监听剪贴板更改
此应用侦听剪贴板更改。一些恶意软件也会监听剪贴板更改 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04b-Mobile-App-Security-Testing.md#clipboard Files: com/reactnativecommunity/clipboard/ClipboardModule.java, line(s) 30,229,229,4
安全提示信息 应用与Firebase数据库通信
该应用与位于 https://fusion-app-3328b.firebaseio.com 的 Firebase 数据库进行通信
已通过安全项 此应用程序使用SSL Pinning 来检测或防止安全通信通道中的MITM攻击
此应用程序使用SSL Pinning 来检测或防止安全通信通道中的MITM攻击 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05g-Testing-Network-Communication.md#testing-custom-certificate-stores-and-certificate-pinning-mstg-network-4 Files: com/adityabirlawellness/vifitsdk/network/RetrofitClient.java, line(s) 128,131,134,137,140,128,131,134,137,140 com/clevertap/android/sdk/network/http/UrlConnectionHttpClient.java, line(s) 102,101,102,100,94,94 com/mventus/selfcare/activity/SSLPinnerFactory.java, line(s) 12,12,12 com/onmobile/rbtsdkui/http/retrofit_io/OkHttpClientProvider.java, line(s) 99,99 com/onmobile/rbtsdkui/http/retrofit_io/RetrofitProvider.java, line(s) 42,54,83,37,49,61 com/oriserve/orichat/ApiClient.java, line(s) 41,41 com/oriserve/orichat/EventApiClient.java, line(s) 34,34 com/yupptv/ottsdk/rest/network/RestAdapter.java, line(s) 222,436,218,432,50,144,176,186,251,280,311,319,348,393 in/juspay/hypersdk/security/HyperSSLSocketFactory.java, line(s) 34,26,33,32,32 one/upswing/sdk/a.java, line(s) 67,67,67,64,72
已通过安全项 此应用程序可能具有Root检测功能
此应用程序可能具有Root检测功能 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05j-Testing-Resiliency-Against-Reverse-Engineering.md#testing-root-detection-mstg-resilience-1 Files: com/mventus/selfcare/activity/juspay/JusPay.java, line(s) 120,120,121 com/scottyab/rootbeer/RootBeer.java, line(s) 241 in/juspay/hypersdk/data/SessionInfo.java, line(s) 148,152 in/juspay/trident/core/p.java, line(s) 431,432 io/sentry/android/core/DeviceInfoUtil.java, line(s) 386 io/sentry/android/core/internal/util/RootChecker.java, line(s) 80,38,38,38,38,38,38,83 one/upswing/sdk/j2.java, line(s) 614 one/upswing/sdk/l0.java, line(s) 697
综合安全基线评分总结
Vi App v10.18.0
Android APK
40
综合安全评分
中风险