应用安全检测报告
应用安全检测报告,支持文件搜索、内容检索和AI代码分析
移动应用安全检测报告
Bhakti v5.4.0
47
安全评分
安全基线评分
47/100
中风险
综合风险等级
风险等级评定
- A
- B
- C
- F
应用存在一定安全风险,建议优化
漏洞与安全项分布
5
高危
35
中危
4
信息
2
安全
隐私风险评估
8
第三方跟踪器
高隐私风险
检测到大量第三方跟踪器
检测结果分布
高危安全漏洞
5
中危安全漏洞
35
安全提示信息
4
已通过安全项
2
重点安全关注
2
高危安全漏洞 如果一个应用程序使用WebView.loadDataWithBaseURL方法来加载一个网页到WebView,那么这个应用程序可能会遭受跨站脚本攻击
如果一个应用程序使用WebView.loadDataWithBaseURL方法来加载一个网页到WebView,那么这个应用程序可能会遭受跨站脚本攻击 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05h-Testing-Platform-Interaction.md#static-analysis-7 Files: com/razorpay/AbstractC3275m.java, line(s) 1421,1476,19 in/juspay/hypersdk/core/DynamicUI.java, line(s) 199,424,10 in/juspay/hypersdk/safe/JuspayWebView.java, line(s) 53,10,11 vj/C1526cg.java, line(s) 254,6
高危安全漏洞 该文件是World Writable。任何应用程序都可以写入文件
该文件是World Writable。任何应用程序都可以写入文件 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05d-Testing-Data-Storage.md#testing-local-storage-for-sensitive-data-mstg-storage-1-and-mstg-storage-2 Files: in/juspay/hypersdk/core/AndroidInterface.java, line(s) 663 in/juspay/hypersdk/data/KeyValueStore.java, line(s) 13
高危安全漏洞 应用程序使用带PKCS5/PKCS7填充的加密模式CBC。此配置容易受到填充oracle攻击。
应用程序使用带PKCS5/PKCS7填充的加密模式CBC。此配置容易受到填充oracle攻击。 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#identifying-insecure-andor-deprecated-cryptographic-algorithms-mstg-crypto-4 Files: Ic/C0.java, line(s) 1072,1114 s3/C2260a.java, line(s) 42 s3/C6537a.java, line(s) 44
高危安全漏洞 已启用远程WebView调试
已启用远程WebView调试 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04c-Tampering-and-Reverse-Engineering.md#debugging-and-tracing Files: easypay/appinvoke/actions/EasypayBrowserFragment.java, line(s) 720,28,1259,1260
高危安全漏洞 应用程序包含隐私跟踪程序
此应用程序有多个8隐私跟踪程序。跟踪器可以跟踪设备或用户,是终端用户的隐私问题。
中危安全漏洞 Content Provider (com.vlv.aravali.utils.sharedLogin.SharedDataProvider) 未受保护。
[android:exported=true] 检测到 Content Provider 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Content Provider (com.facebook.FacebookContentProvider) 未受保护。
[android:exported=true] 检测到 Content Provider 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Broadcast Receiver (com.vlv.aravali.notifications.KukuNotificationBroadcastReceiver) 未受保护。
[android:exported=true] 检测到 Broadcast Receiver 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Broadcast Receiver (com.vlv.aravali.receivers.SmsBroadcastReceiver) 受权限保护,但应检查权限保护级别。
Permission: com.google.android.gms.auth.api.phone.permission.SEND [android:exported=true] 检测到 Broadcast Receiver 已导出并受未在本应用定义的权限保护。请在权限定义处核查其保护级别。若为 normal 或 dangerous,恶意应用可申请并与组件交互;若为 signature,仅同证书签名应用可访问。
中危安全漏洞 Activity (com.canhub.cropper.CropImageActivity) 未受保护。
[android:exported=true] 检测到 Activity 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Activity (com.vlv.aravali.master.ui.MasterActivity) 未受保护。
[android:exported=true] 检测到 Activity 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Activity (com.vlv.aravali.signup.ui.activities.SignupActivity) 未受保护。
[android:exported=true] 检测到 Activity 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Service (com.vlv.aravali.notifications.FirebaseMessaging) 未受保护。
[android:exported=true] 检测到 Service 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Service (com.vlv.aravali.playerMedia3.service.KukuFMMedia3Service) 未受保护。
[android:exported=true] 检测到 Service 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Broadcast Receiver (com.vlv.aravali.receivers.BluetoothBroadcastReceiver) 未受保护。
[android:exported=true] 检测到 Broadcast Receiver 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Activity (com.facebook.CustomTabActivity) 未受保护。
[android:exported=true] 检测到 Activity 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Activity (in.juspay.hypersdk.core.CustomtabResult) 未受保护。
[android:exported=true] 检测到 Activity 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Activity (com.moengage.sdk.debugger.MoEDebuggerActivity) 未受保护。
[android:exported=true] 检测到 Activity 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Activity (androidx.core.google.shortcuts.TrampolineActivity) 未受保护。
[android:exported=true] 检测到 Activity 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Broadcast Receiver (com.google.firebase.iid.FirebaseInstanceIdReceiver) 受权限保护,但应检查权限保护级别。
Permission: com.google.android.c2dm.permission.SEND [android:exported=true] 检测到 Broadcast Receiver 已导出并受未在本应用定义的权限保护。请在权限定义处核查其保护级别。若为 normal 或 dangerous,恶意应用可申请并与组件交互;若为 signature,仅同证书签名应用可访问。
中危安全漏洞 Activity (com.google.firebase.auth.internal.GenericIdpActivity) 未受保护。
[android:exported=true] 检测到 Activity 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Activity (com.google.firebase.auth.internal.RecaptchaActivity) 未受保护。
[android:exported=true] 检测到 Activity 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Service (com.google.android.gms.auth.api.signin.RevocationBoundService) 受权限保护,但应检查权限保护级别。
Permission: com.google.android.gms.auth.api.signin.permission.REVOCATION_NOTIFICATION [android:exported=true] 检测到 Service 已导出并受未在本应用定义的权限保护。请在权限定义处核查其保护级别。若为 normal 或 dangerous,恶意应用可申请并与组件交互;若为 signature,仅同证书签名应用可访问。
中危安全漏洞 Service (androidx.work.impl.background.systemjob.SystemJobService) 受权限保护,但应检查权限保护级别。
Permission: android.permission.BIND_JOB_SERVICE [android:exported=true] 检测到 Service 已导出并受未在本应用定义的权限保护。请在权限定义处核查其保护级别。若为 normal 或 dangerous,恶意应用可申请并与组件交互;若为 signature,仅同证书签名应用可访问。
中危安全漏洞 Broadcast Receiver (androidx.work.impl.diagnostics.DiagnosticsReceiver) 受权限保护,但应检查权限保护级别。
Permission: android.permission.DUMP [android:exported=true] 检测到 Broadcast Receiver 已导出并受未在本应用定义的权限保护。请在权限定义处核查其保护级别。若为 normal 或 dangerous,恶意应用可申请并与组件交互;若为 signature,仅同证书签名应用可访问。
中危安全漏洞 Activity (androidx.compose.ui.tooling.PreviewActivity) 未受保护。
[android:exported=true] 检测到 Activity 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Broadcast Receiver (androidx.profileinstaller.ProfileInstallReceiver) 受权限保护,但应检查权限保护级别。
Permission: android.permission.DUMP [android:exported=true] 检测到 Broadcast Receiver 已导出并受未在本应用定义的权限保护。请在权限定义处核查其保护级别。若为 normal 或 dangerous,恶意应用可申请并与组件交互;若为 signature,仅同证书签名应用可访问。
中危安全漏洞 Activity (com.moengage.hms.pushkit.PushClickTracker) 未受保护。
[android:exported=true] 检测到 Activity 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 应用程序使用SQLite数据库并执行原始SQL查询。原始SQL查询中不受信任的用户输入可能会导致SQL注入。敏感信息也应加密并写入数据库
应用程序使用SQLite数据库并执行原始SQL查询。原始SQL查询中不受信任的用户输入可能会导致SQL注入。敏感信息也应加密并写入数据库 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04h-Testing-Code-Quality.md#injection-flaws-mstg-arch-2-and-mstg-platform-2 Files: A3/M.java, line(s) 11,333 A9/f.java, line(s) 13,44 A9/h.java, line(s) 6,31 A9/o.java, line(s) 4,5,75 Ac/c.java, line(s) 12,138 B5/C0045c.java, line(s) 7,8,9,10,113,151 B5/C2709c.java, line(s) 8,9,10,11,122,168 G3/AbstractC1542b.java, line(s) 7,42 G3/AbstractC4601b.java, line(s) 7,44 G3/C1541a.java, line(s) 5,6,20 G3/C4600a.java, line(s) 5,6,20 I3/C1749g.java, line(s) 7,64,65 I3/C1756n.java, line(s) 7,8,55,56,207 I3/C5006g.java, line(s) 7,66,67 I3/C5013n.java, line(s) 7,8,57,58,209 Sa/B0.java, line(s) 7,8,126 Sa/C0157l.java, line(s) 5,6,515,768,1437 Sa/C1238c.java, line(s) 4,52 Sa/C1265l.java, line(s) 6,7,92,1013,1163,1414,1757,2632 Sa/M1.java, line(s) 9,1151 Z9/C7541c.java, line(s) 9,69 Z9/C7544f.java, line(s) 7,86,136 qf/g.java, line(s) 8,9,375 s4/E0.java, line(s) 4,136,148 y3/C2732a.java, line(s) 7,8,128,129 y3/C7407a.java, line(s) 7,8,131,132
中危安全漏洞 应用程序使用不安全的随机数生成器
应用程序使用不安全的随机数生成器 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#weak-random-number-generators Files: A3/p0.java, line(s) 4 Ad/m.java, line(s) 16 Ad/q.java, line(s) 15 I3/C1763u.java, line(s) 22 I3/C5020u.java, line(s) 24 Nl/dionsegijn/konfetti/xml/KonfettiView.java, line(s) 15 P9/C0081p.java, line(s) 16 P9/C0086s.java, line(s) 10 P9/C1100p.java, line(s) 18 P9/C1105s.java, line(s) 10 Sa/V1.java, line(s) 37 T8/C0678c.java, line(s) 13 T8/C1362c.java, line(s) 18 com/vlv/aravali/views/fragments/SettingsFragment.java, line(s) 77 dp/a.java, line(s) 3 dp/b.java, line(s) 3 ep/a.java, line(s) 4 h5/c0.java, line(s) 63 j$/util/concurrent/ThreadLocalRandom.java, line(s) 11 l3/D.java, line(s) 50 l3/L.java, line(s) 33 m3/i.java, line(s) 10 mq/d.java, line(s) 4 p8/C6245t.java, line(s) 5 p8/T.java, line(s) 5 wd/d.java, line(s) 8 zd/k.java, line(s) 4 zd/l.java, line(s) 4 zd/m.java, line(s) 15
中危安全漏洞 文件可能包含硬编码的敏感信息,如用户名、密码、密钥等
文件可能包含硬编码的敏感信息,如用户名、密码、密钥等 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05d-Testing-Data-Storage.md#checking-memory-for-sensitive-data-mstg-storage-10 Files: Ah/C0820b.java, line(s) 82 Ah/C2283b.java, line(s) 85 B4/C0302v.java, line(s) 1521 B4/V.java, line(s) 1417 H0/C1579c0.java, line(s) 24 H0/C4756c0.java, line(s) 25 On/d.java, line(s) 25,26 On/k.java, line(s) 24 Q6/j.java, line(s) 54 S6/C0625f.java, line(s) 36 S6/C1206f.java, line(s) 37 S6/F.java, line(s) 92 S6/w.java, line(s) 87 T8/B.java, line(s) 29,30 T8/C1373n.java, line(s) 57 T8/N.java, line(s) 64 X/AbstractC2623b.java, line(s) 17 X/AbstractC7253b.java, line(s) 17 Y5/a.java, line(s) 33 com/smartlook/i.java, line(s) 64 com/smartlook/k.java, line(s) 59 com/smartlook/sdk/storage/SessionRecordingStorage.java, line(s) 50 com/truecaller/android/sdk/PartnerInformation.java, line(s) 16 com/truecaller/android/sdk/common/TrueException.java, line(s) 16 com/vlv/aravali/coins/data/responses/CoinPaymentInfo.java, line(s) 513 com/vlv/aravali/coins/data/responses/CoinPaymentMetaDataResponse.java, line(s) 177 com/vlv/aravali/coins/data/responses/ReferralDetailsResponse.java, line(s) 168 com/vlv/aravali/coins/ui/fragments/WebStoreFragment.java, line(s) 641 com/vlv/aravali/common/models/CUPart.java, line(s) 2145,2148 com/vlv/aravali/commonFeatures/web/WebFragment.java, line(s) 207 com/vlv/aravali/model/KeyValueItem.java, line(s) 87 com/vlv/aravali/payments/common/data/PaymentGatewayConfig.java, line(s) 236 com/vlv/aravali/payments/legacy/data/Offer.java, line(s) 121 com/vlv/aravali/payments/legacy/data/RazorPayNetBankingBank.java, line(s) 68 com/vlv/aravali/payments/legacy/ui/fragment/V.java, line(s) 862 com/vlv/aravali/premium/ui/PremiumFragmentV2.java, line(s) 499 com/vlv/aravali/userDataCollection/data/QuestionDataListUdc.java, line(s) 223 com/vlv/aravali/vip/data/models/UserReview.java, line(s) 99 d6/g.java, line(s) 105 d6/n.java, line(s) 57 easypay/appinvoke/manager/Constants.java, line(s) 44,43,84,85
中危安全漏洞 MD5是已知存在哈希冲突的弱哈希
MD5是已知存在哈希冲突的弱哈希 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#identifying-insecure-andor-deprecated-cryptographic-algorithms-mstg-crypto-4 Files: P9/C0086s.java, line(s) 38 P9/C1105s.java, line(s) 44 Sa/V1.java, line(s) 206 U6/C6933c.java, line(s) 110 U6/c.java, line(s) 89 in/juspay/hypersdk/security/EncryptionHelper.java, line(s) 171,249
中危安全漏洞 不安全的Web视图实现。可能存在WebView任意代码执行漏洞
不安全的Web视图实现。可能存在WebView任意代码执行漏洞 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05h-Testing-Platform-Interaction.md#testing-javascript-execution-in-webviews-mstg-platform-5 Files: com/paytm/pgsdk/PaytmWebView.java, line(s) 40,38 com/razorpay/AbstractC3275m.java, line(s) 1057,1063,1039 com/razorpay/M.java, line(s) 602,608,584 com/vlv/aravali/coins/ui/fragments/WebStoreFragment.java, line(s) 354,345 com/vlv/aravali/commonFeatures/web/WebFragment.java, line(s) 108,99 com/vlv/aravali/livestream/ui/LiveStreamActivity.java, line(s) 216,208 com/vlv/aravali/novel/ui/fragments/ReadingFragment.java, line(s) 325,315 com/vlv/aravali/payments/legacy/ui/fragment/V.java, line(s) 619,597 com/vlv/aravali/premium/ui/PremiumFragmentV2.java, line(s) 356,350 com/yellowmessenger/ymchat/YellowBotWebviewFragment.java, line(s) 537,486 in/juspay/hypersdk/core/DynamicUI.java, line(s) 117,154,247,115 in/juspay/hypersdk/safe/Godel.java, line(s) 331,570,564 s4/RunnableC2290j0.java, line(s) 213,205 s4/RunnableC6567j0.java, line(s) 229,221
中危安全漏洞 应用程序可以读取/写入外部存储器,任何应用程序都可以读取写入外部存储器的数据
应用程序可以读取/写入外部存储器,任何应用程序都可以读取写入外部存储器的数据 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05d-Testing-Data-Storage.md#external-storage Files: Qn/C1151e.java, line(s) 581 Qn/n.java, line(s) 8 easypay/appinvoke/manager/PaytmAssist.java, line(s) 186 o7/AbstractC2067j.java, line(s) 393 o7/AbstractC6127j.java, line(s) 499 xj/y.java, line(s) 129,129
中危安全漏洞 SHA-1是已知存在哈希冲突的弱哈希
SHA-1是已知存在哈希冲突的弱哈希 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#identifying-insecure-andor-deprecated-cryptographic-algorithms-mstg-crypto-4 Files: A/AbstractC2199a.java, line(s) 255 A/a.java, line(s) 196 B/A.java, line(s) 400 B/AbstractC2657a.java, line(s) 514 Dd/C4091b.java, line(s) 70 Fc/h.java, line(s) 103 zi/C2473c.java, line(s) 100 zi/C7575c.java, line(s) 104
中危安全漏洞 可能存在跨域漏洞。在 WebView 中启用从 URL 访问文件可能会泄漏文件系统中的敏感信息
可能存在跨域漏洞。在 WebView 中启用从 URL 访问文件可能会泄漏文件系统中的敏感信息 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05h-Testing-Platform-Interaction.md#static-analysis-6 Files: com/vlv/aravali/coins/ui/fragments/WebStoreFragment.java, line(s) 347,345 com/vlv/aravali/commonFeatures/web/WebFragment.java, line(s) 101,99 com/vlv/aravali/novel/ui/fragments/ReadingFragment.java, line(s) 320,315 com/vlv/aravali/payments/legacy/ui/fragment/V.java, line(s) 603,597 com/vlv/aravali/premium/ui/PremiumFragmentV2.java, line(s) 352,350 com/yellowmessenger/ymchat/YellowBotWebviewFragment.java, line(s) 510,486 in/juspay/hypersdk/safe/Godel.java, line(s) 577,564 s4/RunnableC2290j0.java, line(s) 210,205 s4/RunnableC6567j0.java, line(s) 226,221 vj/C0466kc.java, line(s) 65,63 vj/C0663ua.java, line(s) 56,54 vj/C1681kc.java, line(s) 84,82 vj/C1878ua.java, line(s) 66,64
中危安全漏洞 应用程序创建临时文件。敏感信息永远不应该被写进临时文件
应用程序创建临时文件。敏感信息永远不应该被写进临时文件 Files: Qn/C1151e.java, line(s) 581 com/canhub/cropper/CropImageActivity.java, line(s) 80 com/yellowmessenger/ymchat/YellowBotWebviewFragment.java, line(s) 219 o7/AbstractC2067j.java, line(s) 393,398,403 o7/AbstractC6127j.java, line(s) 499,504,509 u4/C6929d.java, line(s) 94 u4/d.java, line(s) 90
中危安全漏洞 此应用程序可能会请求root(超级用户)权限
此应用程序可能会请求root(超级用户)权限 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05j-Testing-Resiliency-Against-Reverse-Engineering.md#testing-root-detection-mstg-resilience-1 Files: Io/sentry/android/core/internal/util/e.java, line(s) 25,25,25,25,25
中危安全漏洞 Firebase远程配置已启用
Firebase远程配置URL ( https://firebaseremoteconfig.googleapis.com/v1/projects/850220037081/namespaces/firebase:fetch?key=AIzaSyCKncphbcD-b6vIRNByOnfnQlI1kqnNqNg ) 已启用。请确保这些配置不包含敏感信息。响应内容如下所示:
{
"entries": {
"Show_Duration_Toggle": "true",
"adds_episodes_interval": "2",
"alert_download_size": "100",
"allow_access_background_guide": "true",
"always_show_premium_tab": "true",
"animate_share_btn": "true",
"animate_unlock_button_player": "false",
"api_response_caching_duration": "1800",
"app_language": "en",
"audio_promotion": "true",
"auto_download_episode_id": "42786",
"auto_payment_tooltip": "true",
"autoplay_on_player_for_new_user": "1",
"autoplay_show_hybrid_player": "false",
"banner_play_muted": "true",
"banner_refresh_rate": "10000",
"banner_refresh_rate_free_user": "10000",
"banner_refresh_rate_premium_user": "5000",
"call_us_phones": "+912071530214",
"call_us_popup_data": "{\"english\":{\"title\":\"Happy to help you\",\"message\":\"We are available Monday to Sunday between 10am to 7pm. Normal call charges may apply.\"},\"hindi\":{\"title\":\"आपकी मदद करने में खुशी होगी\",\"message\":\"हम सोमवार से रविवार सुबह 10 बजे से शाम 7 बजे तक उपलब्ध हैं। सामान्य कॉल शुल्क लागू हो सकते हैं।\"},\"bengali\":{\"title\":\"আপনাকে সাহায্য করে খুশি হবে\",\"message\":\"আমরা সোমবার থেকে রবিবার সকাল 10 টা থেকে সন্ধ্যা 7 টার মধ্যে উপলব্ধ। স্বাভাবিক কল চার্জ প্রযোজ্য হতে পারে।\"},\"gujarati\":{\"title\":\"તમને મદદ કરવામાં આનંદ થશે\",\"message\":\"અમે સોમવારથી રવિવાર સવારે 10 થી સાંજે 7 વાગ્યાની વચ્ચે ઉપલબ્ધ છીએ. સામાન્ય કોલ ચાર્જ લાગુ થઈ શકે છે.\"},\"marathi\":{\"title\":\"तुम्हाला मदत करण्यात आनंद होईल\",\"message\":\"आम्ही सोमवार ते रविवार सकाळी 10 ते संध्याकाळी 7 दरम्यान उपलब्ध आहोत. सामान्य कॉल शुल्क लागू होऊ शकतात।\"},\"tamil\":{\"title\":\"உங்களுக்கு உதவ சந்தோஷமாக இருக்கும்\",\"message\":\"நாங்கள் திங்கள் முதல் ஞாயிறு வரை காலை 10 மணி முதல் இரவு 7 மணி வரை கிடைக்கும். சாதாரண அழைப்பு கட்டணங்கள் பொருந்தும்.\"}}",
"cdn_base_url": "https://d31ntp24xvh0tq.cloudfront.net",
"channel_list_listener_visibility": "false",
"content_lang_on_subs_page": "false",
"content_preview_enabled": "false",
"coupon_scarcity_renewal": "false",
"creator_alert_visibility": "false",
"cu_autoplay": "false",
"curation_entertainment_image": "https://images.cdn.kukufm.com/https://kukufm.s3.ap-south-1.amazonaws.com/banners/entertainment.png",
"curation_learning_image": "https://images.cdn.kukufm.com/https://kukufm.s3.ap-south-1.amazonaws.com/banners/learning.png",
"daily_d1_autoplay_limit": "false",
"daily_unlock_tooltip_count": "2",
"dark_theme_default": "true",
"dedicate_to_visible": "true",
"details_tab_active": "false",
"disable_auto_renew_hints": "false",
"discount_ribbon_text": "Get your Premium back ",
"download_wifi_popup": "{\"enable\":false,\"delay\":3000,\"interval\":1,\"free_user_enable\":false}",
"duration_on_content_enabled": "false",
"email_for_edit_details": "[email protected]",
"enable_app_language_change": "false",
"enable_bhakti_theme_change_setting": "true",
"enable_cdn_based_url_v2": "false",
"enable_coupon_scarcity": "false",
"enable_explore_video_autoplay": "true",
"enable_festive_sale": "false",
"enable_gift_feature": "false",
"enable_guilt_for_renewals_payment_page": "false",
"enable_guilt_popup_for_renewals": "false",
"enable_jiny": "true",
"enable_marathi_app_lang": "false",
"enable_otpless_whatsapp_login": "false",
"enable_priority_timer": "true",
"enable_skip_and_google_login_for_international": "false",
"enable_skip_on_onboarding_category": "false",
"enable_smartlook": "true",
"enable_smartlook_for_countries": "[\"US\"]",
"enable_top_bar_budge_for_renewals": "false",
"enable_video_monitoring": "true",
"episodes_on_content_enabled": "false",
"episodes_pagination_size": "10",
"fb_user_auth_using_otp": "true",
"feedback_medium": "gmail",
"first_show_upsell": "false",
"followed_podcast_source": "remote_api",
"force_stop_youtube_id": "mp4Wa1KkCi4",
"free_episode_key_type": "n_percent",
"free_episode_key_value": "100",
"free_tag_visibility": "true",
"fullscreen_invite_subhead_hi": "इस ऐप को ज़्यादा से ज़्यादा भारतीयों तक पहुंचाने में हमारी मदद करें।",
"gifting_plan": "{\"planId\":506,\"title\":\"Annual Plan\",\"planType\":\"overall\",\"validity\":365,\"validityText\":\"Year\",\"validTill\":null,\"planName\":\"Annual Plan\",\"couponDiscountAmount\":0,\"couponCode\":\"\",\"finalPrice\":1199,\"showId\":null,\"googlePlayProductId\":\"temp_premium_y1\",\"effectivePrice\":\"Effective price ₹75/month\",\"isFreeTrial\":false,\"renewalDate\":null,\"freeTrialChargeMsg\":null}",
"gpay_smart_intent_enabled": "true",
"guilt_popup_version": "4",
"hide_email_skip_login_US": "true",
"hide_show_title": "true",
"hide_top_bar_and_new_qam": "true",
"home_banner_position": "0",
"home_index": "0",
"home_page_nudge_premium_earning_url": "{\"url\":\"https://images.cdn.kukufm.com/https://kukufm.s3.ap-south-1.amazonaws.com/banners/benefit-mania-1.png\",\"enable\":false}",
"home_quiz_d1": "{\"button_animation_duration\":3000,\"quiz\":[{\"question\":\"What type of content you like on Kuku FM?\",\"options\":[\"Business\",\"Career\",\"Society & Culture\",\"Thriller\"]}],\"coupon_deeplink\":\"app://kukufm/subscription?action=pre_apply_coupon&couponCode=FREEDOM50&planId=203\"}",
"home_screen_download": "true",
"horizontal_new_release": "true",
"horizontal_top_20": "true",
"in_app_update": "0",
"infinite_feed_title": "Recommended Shows",
"inquiry_number": "+912071530214",
"invite_delayed_time": "60",
"invite_layout_visibility": "false",
"invite_remote_listening_time2": "60000000000000000",
"invite_whatsapp_popup_count": "0",
"invite_whatsapp_popup_delayed_time": "120000",
"ios_free_trial_timer": "3",
"landing_tab": "home",
"language_coachmark": "true",
"language_prompt_count": "3",
"library_category_list": "{\"items\":[{\"id\":1,\"title\":\"Top Audios for you\",\"slug\":\"top-audios-for-you\"},{\"id\":2,\"title\":\"Most Played\",\"slug\":\"top-10-in-india\"},{\"id\":4,\"title\":\"New Releases\",\"slug\":\"newly-released-\"},{\"id\":5,\"title\":\"Premium\",\"slug\":\"premium-content\"},{\"id\":6,\"title\":\"Trending\",\"slug\":\"trending-now\"}]}",
"live_banner_default_volume": "0",
"lock_in_listening_schedule": "false",
"login_screen_show_graphic": "true",
"mandatory_annual_auto_pay_enabled": "false",
"mandatory_annual_auto_pay_enabled_v2": "false",
"mandatory_lang_for_onboarding": "hi",
"max_adds_per_day": "30",
"miniapp_localhost_domain": "http://vikas.stage.kukufm.com",
"miniapp_preprod_domain": "http://preprod.kukufm.com",
"miniapp_prod_domain": "http://kukufm.com",
"mobile_no_for_edit_details": "+912071530214",
"mute_trailer_on_show_page": "false",
"native_premium_page_auto_apply_coupon": "true",
"network_stats_enabled": "true",
"new_auto_renewal_every_month": "{\"data\":{\"enable\":false,\"show_icon\":false,\"icon_color\":\"\",\"show_index\":false,\"enable_v2\":true,\"show_v2_msgs\":false}}",
"new_mini_player": "true",
"new_show_page": "false",
"new_show_page_show_tags": "false",
"new_show_page_trailer_auto_resume": "false",
"new_show_page_v2": "true",
"notification_permission_data": "{\"firstWeekMaxCount\":2,\"weeklyMaxCount\":2,\"maxWeekCount\":10,\"title\":\"Earn 20\",\"description\":\"Enable Push Notifications & get 20 free coins <b>tomorrow</b>!! Don't miss out!\",\"promoCoins\":20,\"promoActivityId\":67,\"promoActivityCode\":\"notification_permission\",\"showRewardFlow\":false}",
"notification_permission_prompt_data": "{\"firstWeekMaxCount\":0,\"weeklyMaxCount\":0,\"maxWeekCount\":0,\"title\":\"Earn 20\",\"description\":\"Enable Push Notifications & get 20 free coins <b>tomorrow</b>!! Don't miss out!\",\"promoCoins\":20,\"promoActivityId\":67,\"promoActivityCode\":\"notification_permission\"}",
"otp_resend_time": "30",
"pause_nudge": "false",
"payment_video_url": "https://kukufm.s3.ap-south-1.amazonaws.com/experiments/automatic_payment_guide.mp4",
"paywall_data": "{\"type\":\"image\",\"data\":{\"category_name\":\"RECOMMENDED BY\",\"image_url\":\"https://images.cdn.kukufm.com/https://kukufm.s3.ap-south-1.amazonaws.com/banners/Paywall-a-20-Aug-2022.png\",\"top_text\":\"Unlock all 30 Episodes now with Premium\",\"text\":\"“This book has changed my life, Must read.”\",\"sub_text\":\"Bill Gates\",\"button_text\":\"Subscribe Now RC\"}}",
"perform_anonymous_login_on_splash": "true",
"play_audio_on_banner_click": "false",
"play_recommended_on_locked_player": "true",
"play_trailer_content_preview": "true",
"play_trailer_on_scroll_show_page": "true",
"player_default_tab": "comments",
"player_experiment_d0": "false",
"player_tabs_order": "comments,notes",
"player_tabs_order_v2": "comments,episodes,explore",
"popular_search_terms": "Finance, Money and Investment, Dil Bechara, Rich Dad Poor Dad",
"premium_benefits": "{\"english\":[\"1000+ shows\",\"Adfree listening experience\",\"HD quality streaming\"],\"hindi\":[\"1000+ शो\",\"एड फ्री सुननें का बेहतर अनुभव\",\"एचडी क्वालिटी का मजा लें!\"],\"marathi\":[\"1000+ शोस\",\"एड फ्री सुननें का बेहतर अनुभव\",\"एचडी क्वालिटी का मजा लें!\"],\"bengali\":[\"1000+ শো\",\"বিজ্ঞাপন ছাড়া শোনার অভিজ্ঞতা\",\"HD মানের স্ট্রিমিং\"],\"gujarati\":[\"1000+ શોઝ\",\"એડ ફ્રી સાંભળવાનો અનુભવ\",\"HD ગુણવત્તા સ્ટ્રીમિંગ\"],\"tamil\":[\"1000+ நிகழ்ச்சிகள்\",\"விளம்பரமில்லா கேட்டல் அனுபவம்\",\"HD தர ஸ்ட்ரீமிங்\"]}",
"premium_faqs": "{ \"english\": [ { \"question\": \"What are the benefits of buying KukuFM Premium?\", \"answer\": \"KukuFM Premium brings you Motivation and self-help content, which can help you gain more control over your life. It can help you to build your confidence, improve career prospects, inculcate healthy habits which results in mindfulness and fitness, and improve your character which inculcates healthy relationships. So why not invest in your personal growth when you can get it all at one place.\" }, { \"question\": \"What is included in the premium subscription?\", \"answer\": \"The premium subscription includes unlimited access to all shows except VIP shows on Kuku FM - we offer self-help and motivational shows, audiobook summaries, stories and much more. Every show except VIP shows on the Kuku FM app is included in your subscription.\" }, { \"question\": \"How can I get the money back if I don’t like it?\", \"answer\": \"Users on the free trial are not eligible for refunds on their first auto-renewal. A 3-day refund policy applies only to renewals after the initial paid subscription. For cancellations or eligible refunds, contact in-app chat support at https://kukufm/chat or email us at [email protected]. Refunds will be processed to the original payment method within 8–11 working days.\" }, { \"question\": \"How can I cancel my subscription for future billing?\", \"answer\": \"You can easily cancel your subscription for future billing by reaching out to us via our in-app chat support at https://kukufm/chat/\" }, { \"question\": \"Can I gift my membership to someone else?\", \"answer\": \"Currently the membership is mapped to a particular profile on KukuFM, and is not transferable.\" }, { \"question\": \"Will the content that is currently available be the only content?\", \"answer\": \"No, our team will constantly add new and fresh content to our Premium library to serve your appetite, so it shall always be more than what a premium user can consume - so that you never feel a shortage of content.\" }, { \"question\": \"What are coins at Kuku FM?\", \"answer\": \"KukuFM coins are an in-app currency that you can purchase & use to unlock episodes of VIP shows.\" } ], \"hindi\": [ { \"question\": \"KukuFM प्रीमियम खरीदने के क्या लाभ हैं?\", \"answer\": \"KukuFM प्रीमियम आपके लिए प्रेरणा और स्व-सहायता सामग्री लाता है, जो आपको अपने जीवन पर अधिक नियंत्रण पाने में मदद कर सकता है। यह आपको अपना आत्मविश्वास बढ़ाने, करियर की संभावनाओं में सुधार करने, स्वस्थ आदतें विकसित करने में मदद कर सकता है जिसके परिणामस्वरूप दिमागीपन और फिटनेस होती है, और आपके चरित्र में सुधार होता है जो स्वस्थ संबंधों को विकसित करता है। तो जब आप यह सब एक ही स्थान पर प्राप्त कर सकते हैं तो अपने व्यक्तिगत विकास में निवेश क्यों न करें।\" }, { \"question\": \"प्रीमियम सदस्यता में क्या शामिल है?\", \"answer\": \"प्रीमियम सदस्यता में कुकू एफएम पर वीआईपी शो को छोड़कर सभी शो तक असीमित पहुंच शामिल है - हम स्व-सहायता और प्रेरक शो, ऑडियोबुक सारांश, कहानियां और बहुत कुछ प्रदान करते हैं। कुकू एफएम ऐप पर वीआईपी शो को छोड़कर हर शो आपकी सदस्यता में शामिल है।\" }, { \"question\": \"यदि मुझे यह पसंद नहीं है तो मैं पैसे कैसे वापस पा सकता हूँ?\", \"answer\": \"हमारी सभी योजनाएं 3 दिन की रिफंड पॉलिसी के साथ आती हैं। यदि आप हमारी सेवा से खुश नहीं हैं, तो आप अपनी सदस्यता रद्द कर सकते हैं और खरीदारी के 3 दिनों के भीतर https://kukufm/chat/ पर हमारे इन-ऐप चैट समर्थन के माध्यम से धनवापसी मांग सकते हैं। आपका रिफंड मूल भुगतान विधि पर 8-11 कार्य दिवसों के भीतर जारी कर दिया जाएगा।\" }, { \"question\": \"मैं भविष्य की बिलिंग के लिए अपनी सदस्यता कैसे रद्द कर सकता हूँ?\", \"answer\": \"आप https://kukufm/chat/ पर हमारे इन-ऐप चैट समर्थन के माध्यम से हमसे संपर्क करके भविष्य की बिलिंग के लिए अपनी सदस्यता आसानी से रद्द कर सकते हैं।\" }, { \"question\": \"क्या मैं अपनी सदस्यता किसी और को उपहार में दे सकता हूँ?\", \"answer\": \"वर्तमान में सदस्यता KukuFM पर एक विशेष प्रोफ़ाइल पर मैप की गई है, और हस्तांतरणीय नहीं है।\" }, { \"question\": \"क्या वर्तमान में उपलब्ध सामग्री ही एकमात्र सामग्री होगी?\", \"answer\": \"नहीं, हमारी टीम आपकी रुचि को पूरा करने के लिए हमारी प्रीमियम लाइब्रेरी में लगातार नई और ताज़ा सामग्री जोड़ेगी, इसलिए यह हमेशा एक प्रीमियम उपयोगकर्ता द्वारा उपभोग की जा सकने वाली सामग्री से अधिक होगी - ताकि आपको कभी भी सामग्री की कमी महसूस न हो।\" }, { \"question\": \"KukuFM कॉइन्स क्या हैं?\", \"answer\": \"KukuFM कॉइन्स एक इन-ऐप मुद्रा है जिसे आप खरीद सकते हैं और वीआईपी शो के एपिसोड अनलॉक करने के लिए उपयोग कर सकते हैं।\" } ], \"marathi\": [ { \"question\": \"KukuFM प्रीमियम खरेदी करण्याचे फायदे काय आहेत?\", \"answer\": \"KukuFM प्रीमियम तुमच्यासाठी प्रेरणा आणि स्वयं-मदत सामग्री आणते, जी तुम्हाला तुमच्या जीवनावर अधिक नियंत्रण मिळविण्यात मदत करू शकते. हे तुम्हाला तुमचा आत्मविश्वास वाढवण्यात, करिअरच्या शक्यता सुधारण्यात, निरोगी सवयी लावण्यास मदत करू शकते ज्यामुळे सजगता आणि तंदुरुस्ती मिळते आणि तुमचे चारित्र्य सुधारते ज्यामुळे निरोगी नातेसंबंध निर्माण होतात. तर मग तुमच्या वैयक्तिक वाढीसाठी गुंतवणूक का करू नये जेव्हा तुम्ही हे सर्व एकाच ठिकाणी मिळवू शकता.\" }, { \"question\": \"प्रीमियम सबस्क्रिप्शनमध्ये काय समाविष्ट आहे?\", \"answer\": \"प्रीमियम सबस्क्रिप्शनमध्ये कुकू एफएमवरील व्हीआयपी शो वगळता सर्व शोमध्ये अमर्यादित प्रवेश समाविष्ट आहे - आम्ही स्वयं-मदत आणि प्रेरक शो, ऑडिओबुक सारांश, कथा आणि बरेच काही ऑफर करतो. Kuku FM ॲपवरील VIP शो वगळता प्रत्येक शो तुमच्या सदस्यत्वामध्ये समाविष्ट आहे.\" }, { \"question\": \"मला ते आवडत नसेल तर मला पैसे कसे परत मिळतील?\", \"answer\": \"आमच्या सर्व योजना 3-दिवसांच्या परतावा धोरणासह येतात. तुम्ही आमच्या सेवेवर खूश नसल्यास, तुम्ही तुमची सदस्यता रद्द करू शकता आणि खरेदीच्या 3 दिवसांच्या आत https://kukufm/chat येथे आमच्या ॲप-मधील चॅट समर्थनाद्वारे परतावा मागू शकता. तुमचा परतावा 8-11 कामकाजाच्या दिवसांत मूळ पेमेंट पद्धतीवर जारी केला जाईल.\" }, { \"question\": \"भविष्यातील बिलिंगसाठी मी माझी सदस्यता कशी रद्द करू शकतो?\", \"answer\": \"https://kukufm/chat वर आमच्या ॲप-मधील चॅट समर्थनाद्वारे आमच्याशी संपर्क साधून तुम्ही भविष्यातील बिलिंगसाठी तुमची सदस्यता सहजपणे रद्द करू शकता.\" }, { \"question\": \"मी माझे सदस्यत्व दुसऱ्याला भेट देऊ शकतो का?\", \"answer\": \"सध्या सदस्यत्व KukuFM वर एका विशिष्ट प्रोफाइलवर मॅप केले आहे, आणि ते हस्तांतरणीय नाही.\" }, { \"question\": \"सध्या जी सामग्री उपलब्ध आहे तीच सामग्री असेल का?\", \"answer\": \"नाही, आमची टीम तुमची भूक भागवण्यासाठी आमच्या प्रीमियम लायब्ररीमध्ये सतत नवीन आणि ताजी सामग्री जोडेल, त्यामुळे प्रीमियम वापरकर्त्याने जे वापरता येईल त्यापेक्षा ते नेहमीच जास्त असेल - जेणेकरून तुम्हाला सामग्रीची कमतरता जाणवू नये.\" }, { \"question\": \"कुकुएफएम नाणी काय आहेत?\", \"answer\": \"KukuFM नाणी हे ॲप-मधील चलन आहे जे तुम्ही खरेदी करू शकता आणि VIP शो भाग अनलॉक करण्यासाठी वापरू शकता.\" } ] }",
"premium_faqs_international": "{ \"english\": [ { \"question\": \"What are the benefits of buying KukuFM Premium?\", \"answer\": \"KukuFM Premium brings you Motivation and self-help content, which can help you gain more control over your life. It can help you to build your confidence, improve career prospects, inculcate healthy habits which results in mindfulness and fitness, and improve your character which inculcates healthy relationships. So why not invest in your personal growth when you can get it all at one place.\" }, { \"question\": \"What is included in the premium subscription?\", \"answer\": \"The premium subscription includes unlimited access to all shows except VIP shows on Kuku FM - we offer self-help and motivational shows, audiobook summaries, stories and much more. Every show except VIP shows on the Kuku FM app is included in your subscription.\" }, { \"question\": \"How can I get the money back if I don’t like it?\", \"answer\": \"Users on the free trial are not eligible for refunds on their first auto-renewal. A 3-day refund policy applies only to renewals after the initial paid subscription. For cancellations or eligible refunds, contact in-app chat support at https://kukufm/chat or email us at [email protected]. Refunds will be processed to the original payment method within 8–11 working days.\" }, { \"question\": \"How can I cancel my subscription for future billing?\", \"answer\": \"You can easily cancel your subscription for future billing by reaching out to us via our in-app chat support at https://kukufm/chat/\" }, { \"question\": \"Can I gift my membership to someone else?\", \"answer\": \"Currently the membership is mapped to a particular profile on KukuFM, and is not transferable.\" }, { \"question\": \"Will the content that is currently available be the only content?\", \"answer\": \"No, our team will constantly add new and fresh content to our Premium library to serve your appetite, so it shall always be more than what a premium user can consume - so that you never feel a shortage of content.\" }, { \"question\": \"What are coins at Kuku FM?\", \"answer\": \"KukuFM coins are an in-app currency that you can purchase & use to unlock episodes of VIP shows.\" } ] }",
"premium_plans": "[{\"plan_type\":\"overall\",\"discounted_selling_price\":199,\"validity\":30,\"plan_name\":\"Kuku Premium Monthly\",\"plan_id\":4,\"validity_text\":\"Month\",\"description\":\"Subscription valid only for 1 month\",\"selling_price\":199,\"discount_amount\":0,\"plan_discount_id\":\"\"},{\"plan_type\":\"overall\",\"discounted_selling_price\":399,\"validity\":365,\"plan_name\":\"Kuku Premium Yearly\",\"plan_id\":1,\"validity_text\":\"Year\",\"description\":\"Subscription valid only for 1 Year\",\"selling_price\":999,\"discount_amount\":600,\"plan_discount_id\":1}]",
"premium_support_mail": "[email protected]",
"premium_support_phone": "+912071530214",
"profile_completion_on_follow": "false",
"profile_performance_see_details": "true",
"profile_show_invite_friends": "true",
"rating_delayed_time": "90000",
"rating_popup_count": "3",
"rating_poupup_interval": "7200",
"rating_redirect_playstore": "false",
"recap_2023": "false",
"recurring_discount_set_a": "true",
"recurring_discount_set_b": "false",
"renewal_show_nudge": "false",
"report_abuse": "https://kukufm.com/terms-condition",
"restrict_screen_recording": "true",
"retry_notification_image_count": "3",
"retry_notification_image_interval": "30",
"sale_content_in_actionbar": "false|18:10:2022|23:59",
"sale_home_gif_link": "{\"url\":\"https://images.cdn.kukufm.com/https://kukufm.s3.ap-south-1.amazonaws.com/diwali-contest/diwali_sale_anim_v5.gif\",\"deeplink\":\"app://kukufm/premium\",\"active\":false}",
"scroll_nudge_text": "Discover More",
"sell_show_in_autoplay_d0": "true",
"should_activate_login_v2": "false",
"should_activate_login_v3": "false",
"should_activate_login_v4": "true",
"should_auto_click_miniplayer": "false",
"should_autoplay_for_d1plus_users": "false",
"should_control_onboarding_from_android": "false",
"should_play_banner_for_organic_user": "1.0",
"should_play_campaign_cu": "true",
"should_pre_apply_coupon_via_discount_discovery": "true",
"should_set_diwali_app_icon": "false",
"should_show_buy_premium_in_actionbar": "false",
"should_show_contact_in_invite": "false",
"should_show_fastest_on_phonepe": "true",
"should_show_new_subscription_page": "true",
"should_show_onboarding_v2": "true",
"should_show_onboarding_v3": "true",
"should_show_rating_on_genre_onboarding": "true",
"should_show_redeem_on_ft_native": "true",
"should_show_skip_button": "false",
"should_skip_download_popup_show_subscription": "true",
"should_skip_login_for_all": "false",
"should_skip_login_for_campaign_user": "false",
"should_skip_paywall_screen": "false",
"show_app_rating_layout": "true",
"show_app_rating_popup": "true",
"show_audio_description": "true",
"show_audio_trimming": "false",
"show_autoplay_switch": "true",
"show_autostart_popup": "true",
"show_autostart_popup_timing": "120",
"show_banner": "true",
"show_banner_play_button": "true",
"show_buy_button_upsell": "false",
"show_call_inquiry": "true",
"show_call_us_icon": "false",
"show_connect_cd_team_dialog": "false",
"show_content_language_after_login": "false",
"show_curation_onboarding": "false",
"show_daily_updates_if_lang_hindi": "true",
"show_description": "false",
"show_discount_ribbon_after_premium_clicked": "false",
"show_diwali_affiliate_popup": "false",
"show_download_discovery_indicators": "true",
"show_end_of_show_experience": "false",
"show_episode_count": "100",
"show_explore_discovery_indicators": "true",
"show_facebook_login": "false",
"show_fomo_paywall": "false",
"show_genre_tag_on_onboarding": "true",
"show_genre_top_creators": "true",
"show_gifting": "true",
"show_home_quiz_d1": "false",
"show_internal_ad": "false",
"show_interstitial_ads": "false",
"show_intro_screen": "false",
"show_intro_screen_v3": "true",
"show_invite_popup": "false",
"show_klips": "false",
"show_language_prompt": "true",
"show_listen_count": "true",
"show_login_screen": "false",
"show_mixeditems_home": "false",
"show_new_home": "true",
"show_new_video_player": "true",
"show_notification_count": "0",
"show_notification_delay": "120000000000000",
"show_onboarding_content_lang_screen": "false",
"show_onboarding_for_female": "true",
"show_onboarding_skip": "true",
"show_one_direct_chat": "true",
"show_page_layout_bounce": "first_user_set",
"show_paytm_in_payment_form": "false",
"show_player_notification_app_open": "true",
"show_player_onboarding": "true",
"show_premium_tag": "false",
"show_premium_tag_for_fiction": "false",
"show_rating": "true",
"show_review_on_player": "false",
"show_ribbon_extra_data": "false",
"show_shows_languages": "true",
"show_shows_languages_coachmark": "true",
"show_shows_play_button": "true",
"show_skip_in_intro_screen_v3": "true",
"show_social_proofing": "true",
"show_splash_holi": "true",
"show_sticky_notification_count": "0",
"show_subscription_on_unlock_click": "true",
"show_subscription_page_in_premium_tab": "false",
"show_user_onboarding": "true",
"show_video_banner": "false",
"show_whatsapp_icon_as_share": "false",
"show_whatsapp_prompt": "false",
"shows_continue_listening_section": "true",
"signup_mandatory": "true",
"signup_mandatory_v2": "true",
"signup_wall_visible": "false",
"simpl_offer_text": "",
"singular_deeplink": "https://kukufm.sng.link/Bpksi/3s34/j2kq",
"skip_male_female_curation": "true",
"skip_payment_failed_pending_page": "true",
"skip_subscription_screen": "false",
"srt_enabled": "true",
"subscription_page_url": "/subscription",
"terms_and_condition": "https://kukufm.com/terms-condition",
"thumbnail_size": "1",
"trailer_end_experience": "2",
"unlock_episode_requirement_type": "podcast_share",
"upgrade_popup_skip_premium_page": "false",
"upi_collect_coachmark_enabled": "false",
"user_experior": "true",
"user_share_image": "true",
"utm_source_autoplay": "ct_autoplay,tm_hero_yt_ex,tm_hero_yt_rm,tm_hero_yt_ra,tm_hero_fb_ex,tm_hero_fb_rm,tm_hero_fb_ra,hi_hero_yt_ex,hi_hero_yt_rm,hi_hero_yt_ra,hi_hero_fb_ex,hi_hero_fb_rm,hi_hero_fb_ra,h_pr_y,h_bytes_fb_rm,h_bytes_fb_ra,h_bytes_yt_rm,h_bytes_yt_ra",
"video_autoplay_subspage": "false",
"whatsapp_nudge_poupup_interval": "60000000000",
"whatsapp_number": "917304632431"
},
"state": "UPDATE",
"templateVersion": "1549"
}
中危安全漏洞 此应用可能包含硬编码机密信息
从应用程序中识别出以下机密确保这些不是机密或私人信息 AdMob广告平台的=> "com.google.android.gms.ads.APPLICATION_ID" : "@7F14003A" "ads_app_id" : "ca-app-pub-7343758533151464~5455934949" "android.credentials.TYPE_PASSWORD_CREDENTIAL" : "Password" "androidx.credentials.TYPE_PUBLIC_KEY_CREDENTIAL" : "Passkey" "com.google.firebase.crashlytics.mapping_file_id" : "92ec6d2914924c7e8e282141acaf930f" "easypay_password" : "Password" "facebook_app_id" : "1230953051317844" "facebook_client_token" : "6fe398dc7c450f498ef59753b4ed4b3e" "firebase_database_url" : "https://aravali-2dbcd.firebaseio.com" "firebase_dynamic_link_host" : "kuku.page.link" "google_api_key" : "AIzaSyCKncphbcD-b6vIRNByOnfnQlI1kqnNqNg" "google_app_id" : "1:850220037081:android:5cb6726b801beeca275fc8" "google_crash_reporting_api_key" : "AIzaSyCKncphbcD-b6vIRNByOnfnQlI1kqnNqNg" "mi_console_app_id" : "com.vlv.aravali.bhakti" "mi_console_app_key" : "1tPbp/WQewQ4pXFC4ccLAw==" "moengage_app_id" : "J6U2SZXF3YJBTYWIF9QR0P57" "smartlook_project_key" : "e5ffb520e2773d2b236303aca8e84c901bc441d5" "user" : "User" "android.credentials.TYPE_PASSWORD_CREDENTIAL" : "Contrasenya" "android.credentials.TYPE_PASSWORD_CREDENTIAL" : "Adgangskode" "android.credentials.TYPE_PASSWORD_CREDENTIAL" : "Passord" "android.credentials.TYPE_PASSWORD_CREDENTIAL" : "Passwort" "androidx.credentials.TYPE_PUBLIC_KEY_CREDENTIAL" : "Passkey" "android.credentials.TYPE_PASSWORD_CREDENTIAL" : "Wagwoord" "androidx.credentials.TYPE_PUBLIC_KEY_CREDENTIAL" : "Wagwoordsleutel" "android.credentials.TYPE_PASSWORD_CREDENTIAL" : "Salasana" "androidx.credentials.TYPE_PUBLIC_KEY_CREDENTIAL" : "Avainkoodi" "android.credentials.TYPE_PASSWORD_CREDENTIAL" : "Heslo" "android.credentials.TYPE_PASSWORD_CREDENTIAL" : "Contrasinal" "android.credentials.TYPE_PASSWORD_CREDENTIAL" : "Wachtwoord" "androidx.credentials.TYPE_PUBLIC_KEY_CREDENTIAL" : "Toegangssleutel" "androidx.credentials.TYPE_PUBLIC_KEY_CREDENTIAL" : "Klucz" "android.credentials.TYPE_PASSWORD_CREDENTIAL" : "Geslo" "android.credentials.TYPE_PASSWORD_CREDENTIAL" : "Password" "androidx.credentials.TYPE_PUBLIC_KEY_CREDENTIAL" : "Passkey" "android.credentials.TYPE_PASSWORD_CREDENTIAL" : "Sandi" "androidx.credentials.TYPE_PUBLIC_KEY_CREDENTIAL" : "Passkey" "android.credentials.TYPE_PASSWORD_CREDENTIAL" : "Zaporka" "android.credentials.TYPE_PASSWORD_CREDENTIAL" : "Lozinka" "android.credentials.TYPE_PASSWORD_CREDENTIAL" : "Lozinka" "android.credentials.TYPE_PASSWORD_CREDENTIAL" : "Heslo" "android.credentials.TYPE_PASSWORD_CREDENTIAL" : "Parool" "android.credentials.TYPE_PASSWORD_CREDENTIAL" : "Password" "androidx.credentials.TYPE_PUBLIC_KEY_CREDENTIAL" : "Passkey" "androidx.credentials.TYPE_PUBLIC_KEY_CREDENTIAL" : "Passkey" "android.credentials.TYPE_PASSWORD_CREDENTIAL" : "Senha" "android.credentials.TYPE_PASSWORD_CREDENTIAL" : "Pasahitza" "androidx.credentials.TYPE_PUBLIC_KEY_CREDENTIAL" : "Sarbide-gakoa" "android.credentials.TYPE_PASSWORD_CREDENTIAL" : "Iphasiwedi" "android.credentials.TYPE_PASSWORD_CREDENTIAL" : "Parole" "androidx.credentials.TYPE_PUBLIC_KEY_CREDENTIAL" : "Nyckel" "android.credentials.TYPE_PASSWORD_CREDENTIAL" : "Nenosiri" "android.credentials.TYPE_PASSWORD_CREDENTIAL" : "Parol" "android.credentials.TYPE_PASSWORD_CREDENTIAL" : "Parol" "androidx.credentials.TYPE_PUBLIC_KEY_CREDENTIAL" : "Kod" "android.credentials.TYPE_PASSWORD_CREDENTIAL" : "Password" "androidx.credentials.TYPE_PUBLIC_KEY_CREDENTIAL" : "Passkey" "android.credentials.TYPE_PASSWORD_CREDENTIAL" : "Password" "androidx.credentials.TYPE_PUBLIC_KEY_CREDENTIAL" : "Passkey" "android.credentials.TYPE_PASSWORD_CREDENTIAL" : "Palavra-passe" "android.credentials.TYPE_PASSWORD_CREDENTIAL" : "Password" "androidx.credentials.TYPE_PUBLIC_KEY_CREDENTIAL" : "Passkey" "android.credentials.TYPE_PASSWORD_CREDENTIAL" : "Senha" "android.credentials.TYPE_PASSWORD_CREDENTIAL" : "Password" "androidx.credentials.TYPE_PUBLIC_KEY_CREDENTIAL" : "Passkey" E3F9E1E0CF99D0E56A055BA65E241B3399F7CEA524326B0CDD6EC1327ED0FDC1 edef8ba9-79d6-4ace-a3c8-27dcd51d21ed 470fa2b4ae81cd56ecbcda9735803434cec591fa 16a09e667f3bcc908b2fb1366ea957d3e3adec17512775099da2f590b0667322a 9b8f518b086098de3d77736f9458a3d2f6f95a37 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 cb2dfa4902afe2e6e8844eef91ee2374 c93c2a14dbe9917db3aa9f04ab4e1f5d FFE391E0EA186D0734ED601E4E70E3224B7309D48E2075BAC46D8C667EAE7212 3BAF59A2E5331C30675FAB35FF5FFF0D116142D3D4664F1C3CB804068B40614F a4b7452e2ed8f5f191058ca7bbfd26b0d3214bfc df6b721c8b4d3b6eb44c861d4415007e5a35fc95 B3EEABB8EE11C2BE770B684D95219ECB FBA3AF4E7757D9016E953FB3EE4671CA2BD9AF725F9A53D52ED4A38EAAA08901 1cbd3130fa23b59692c061c594c16cc0 d53ec4b2ba0d52beec70faeb9d100a60 a-95ed6082-b8e9-46e8-a73f-ff56f00f5d9d d1e150b45fb43e88d3a0b20f59c15a84 0ac1169ae6cead75264c725febd8e8d941f25e31 8a03e08e354a73ac49509c8b708fbe15aee2fb2a 8a3c4b262d721acd49a4bf97d5213199c86fa2b9 2438bce1ddb7bd026d5ff89f598b3b5e5bb824b3 41bf44477d4add0dc8d4afab1b17b9d6 FpcaVAYHNpsRy59E4nueFPIko/R4IPRGNAUHT4+zpeE= 86254750241babac4b8d52996a675549 cc2751449a350f668590264ed76692694a80308a Vn3kj4pUblROi2S+QfRRL9nhsaO2uoHQg6+dpEtxdTE= 18e10e292c0c1fe9a5d4bbb51f39a97b c56fb7d591ba6704df047fd98f535372fea00211
安全提示信息 应用程序记录日志信息,不得记录敏感信息
应用程序记录日志信息,不得记录敏感信息 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05d-Testing-Data-Storage.md#logs Files: A1/AbstractC0044f.java, line(s) 646,677 A1/AbstractC0047i.java, line(s) 772 A1/B.java, line(s) 166 A1/T.java, line(s) 99,147,146,336 A1/Y.java, line(s) 131 A3/C0036s.java, line(s) 230 A3/C0067c.java, line(s) 165 A3/C0080p.java, line(s) 442 A3/C0082s.java, line(s) 240 A3/M.java, line(s) 725,630,721,607 A4/i.java, line(s) 113 A4/n.java, line(s) 460,204 A4/t.java, line(s) 942,1247 A5/AbstractC0033b.java, line(s) 41,45 A5/AbstractC2226b.java, line(s) 42,46 A5/C0108t.java, line(s) 99,200,203,230,256,264,276,436,454,461,320,380,381,382,383,384,385,386,387,388,389,390,391,392,393,394,395,396,397,398,441,98,157,228,255,263,275,296,372,435,453,460,499,297,373 A5/K.java, line(s) 203,233,242,224,226,245,249,252,202,232 A5/RunnableC0095f.java, line(s) 333,334,326 A5/y.java, line(s) 138,229,283,325,467,150,281,472,474,483,137,161,228,466,162,319 A8/e.java, line(s) 52 Aa/h.java, line(s) 48,55 Ab/BinderC0231k.java, line(s) 29,37,28 Ab/BinderC2261k.java, line(s) 32,40,31 Ab/HandlerC0233m.java, line(s) 28,22,39,23,40 Ab/HandlerC2263m.java, line(s) 31,25,42,26,43 Ad/b.java, line(s) 62,67,114 Ad/c.java, line(s) 105,113,74,104,108,75,109 Ad/f.java, line(s) 88 Ad/n.java, line(s) 58 Ad/o.java, line(s) 82,111,455 Ai/o.java, line(s) 170 Ai/p.java, line(s) 951,1006,773,949 Am/C0120k.java, line(s) 1221,1225 Am/G.java, line(s) 198 B/A.java, line(s) 297,315,439,438,432 B/AbstractC2657a.java, line(s) 404,422,553,552,546 B1/c.java, line(s) 244 B1/d.java, line(s) 128 B4/C0125e1.java, line(s) 50,47 B4/C0139i.java, line(s) 103,67,101,70 B4/C0184x.java, line(s) 107 B4/C0185x0.java, line(s) 95 B4/C0190z0.java, line(s) 26,29 B4/C0247e1.java, line(s) 58,55 B4/C0259h1.java, line(s) 320,386,1163,1269,314,381,418,429,480,1158,1177,1187,1255,1266,423,434,488,1180,1190,1258 B4/C0261i.java, line(s) 140,183,582,118,212,580,215 B4/C0308x.java, line(s) 115 B4/C0309x0.java, line(s) 96 B4/C0312y0.java, line(s) 102,99 B4/C0315z0.java, line(s) 33,36 B4/T1.java, line(s) 25,22 B5/h.java, line(s) 40,152 B9/AbstractC1059b.java, line(s) 61,59 B9/AbstractC2724b.java, line(s) 63,61 Bi/o.java, line(s) 72,74 Bi/s.java, line(s) 51,53 C5/C2932a.java, line(s) 64 C5/d.java, line(s) 255,538,254 C8/k.java, line(s) 224,226 Ca/b.java, line(s) 1136,1141,1146 Cd/b.java, line(s) 31 Cd/e.java, line(s) 139,328 Db/e.java, line(s) 91,125 Dd/C4091b.java, line(s) 63,74 Dl/C1868a.java, line(s) 97 Dl/C4103a.java, line(s) 113 Dn/p.java, line(s) 423,270 E/V0.java, line(s) 64,46,85 E3/AbstractC1357b.java, line(s) 102,108,114,120,167,185,191 E3/AbstractC4270b.java, line(s) 105,111,117,123,170,188,194 Ea/f.java, line(s) 56,66,98,154,93,63 Ea/h.java, line(s) 337 Ed/B.java, line(s) 55 Ed/C0048c.java, line(s) 239,244,90,91,230,232 Ed/C0267m.java, line(s) 21,28 Ed/C0275w.java, line(s) 31 Ed/C0457l.java, line(s) 80,97,150,114,104,112 Ed/C0458m.java, line(s) 23,30 Ed/C0467w.java, line(s) 30 Ed/C4305c.java, line(s) 243,248,94,95,234,236 Ed/N.java, line(s) 54,63,53 Ed/Q.java, line(s) 57,69,85,75 Ed/S.java, line(s) 38,76 Eo/C1910e.java, line(s) 56,69 Eo/C4338e.java, line(s) 62,75 F7/a.java, line(s) 35,54 F7/l.java, line(s) 78,79 F7/m.java, line(s) 292,333,321,276,291,317,320,332,344,278,280,318,345 F7/r.java, line(s) 49,29,48,30 F7/s.java, line(s) 46,47 F7/u.java, line(s) 115,122,116,123 F8/b.java, line(s) 40 Fc/D.java, line(s) 87,86 Fc/g.java, line(s) 42,43 Fc/h.java, line(s) 36,107 Fc/j.java, line(s) 33,49 Fc/m.java, line(s) 43,50,51,60 Fc/o.java, line(s) 94,123,264,285,360,307,333,93,122,263,284,297,302,335,349,359,298,303,350,90,100,294,338 Fc/p.java, line(s) 45 Fc/s.java, line(s) 66,84,62,89,92,94,110,54,65,83,55,71,108 Fc/u.java, line(s) 35,50,65,71,78,83,24,28,55,34,49,64,70,77,82 Fc/v.java, line(s) 32,31 Fc/z.java, line(s) 22,29,35,21,28,34 Fe/e.java, line(s) 69,70 G1/o.java, line(s) 879 G2/C1538x.java, line(s) 368,268 G2/C4597x.java, line(s) 1451,1350 G2/U.java, line(s) 131,93,130 G2/V.java, line(s) 20,31 G2/n0.java, line(s) 33,45,52,61 G2/r.java, line(s) 30,43,91,162,225,242,270 G2/s0.java, line(s) 45,90,81 G3/n.java, line(s) 111 G3/o.java, line(s) 446,456,484,490,447,485,459,491 G3/t.java, line(s) 50,81 H0/C1623z0.java, line(s) 373 H0/C4801z0.java, line(s) 497 H3/h.java, line(s) 49 H3/j.java, line(s) 309,315,321,327 Hb/i.java, line(s) 173 Hc/e.java, line(s) 33,65 Hc/h.java, line(s) 141,168,76,82,140,167,54,67,105,147,197,228,272 Hc/n.java, line(s) 29,55 Hf/j.java, line(s) 65,375,368,64,361,371,374,362,372 I3/o.java, line(s) 50 I8/C5048c.java, line(s) 45 I8/c.java, line(s) 42 I9/c.java, line(s) 74,36,38 Ic/C0.java, line(s) 1137 Io/sentry/E0.java, line(s) 87 Io/sentry/android/core/C0288q.java, line(s) 71,65,59,54,62,68 Io/sentry/android/core/C5178q.java, line(s) 74,68,62,57,65,71 Io/sentry/android/replay/a.java, line(s) 84,97,69 J/AbstractC1795j.java, line(s) 218,223 J/AbstractC5464j.java, line(s) 221,226 J5/k.java, line(s) 105,121 J5/v.java, line(s) 391 J7/d.java, line(s) 25,58,26,59 J7/e.java, line(s) 36,37 J7/i.java, line(s) 36,37 Jb/d.java, line(s) 37 Jb/h.java, line(s) 233,237 Jb/j.java, line(s) 50,58 K1/r.java, line(s) 58 Kh/m.java, line(s) 33,20,39,32,38,44,45 L2/b.java, line(s) 125 L2/g.java, line(s) 152,158,212,284,299,319,326,428,474,508,542,597,638,641,721,734,738,750,833,871,897,908,915,65,174,179,694,698,702,767,775,982 L2/k.java, line(s) 19,18 L7/C0023b.java, line(s) 47 L7/C0833b.java, line(s) 46 L8/C0474n.java, line(s) 57,58 L8/C0853n.java, line(s) 59,60 L8/X.java, line(s) 85 L8/c0.java, line(s) 84 L8/f0.java, line(s) 35 L9/C5798a.java, line(s) 107 L9/a.java, line(s) 102 L9/c.java, line(s) 52,65,73,82 Lc/b.java, line(s) 116 Lc/d.java, line(s) 30,76,35,29,75 Ld/C1926b.java, line(s) 140,157 Ld/C5805b.java, line(s) 45,62 M/m.java, line(s) 37 M/t.java, line(s) 61,78,108 M/w.java, line(s) 951,953,955,550,604,607 M1/f.java, line(s) 33,35 M1/k.java, line(s) 33,35 M1/p.java, line(s) 32,34 M1/q.java, line(s) 125 M2/k.java, line(s) 33 M4/BinderC0029w.java, line(s) 74,90 M4/BinderC0897w.java, line(s) 77,93 M4/C0502t.java, line(s) 28 M4/C0894t.java, line(s) 30 M4/L.java, line(s) 39 M4/ServiceConnectionC0895u.java, line(s) 37 N1/C.java, line(s) 125,129,137,139 N1/e.java, line(s) 256 N1/g.java, line(s) 227,406 N1/h.java, line(s) 28,114,116 N1/j.java, line(s) 113,118 N1/l.java, line(s) 131,427 N1/n.java, line(s) 119,198,206,254,256,260 N1/o.java, line(s) 106,113 N1/v.java, line(s) 146,175 N1/z.java, line(s) 45,71 N2/d.java, line(s) 25,24 N6/d.java, line(s) 181 N8/f.java, line(s) 54 N9/h.java, line(s) 62 O6/c.java, line(s) 181,208,178,207 O9/j.java, line(s) 101 Ob/b.java, line(s) 999 Ob/d.java, line(s) 39,38 Ob/j.java, line(s) 80,39,79,40 Oc/e.java, line(s) 19 Oc/g.java, line(s) 264,271,66,70,76,79,186 P/b0.java, line(s) 78,163 P1/C2079a.java, line(s) 143 P1/C6190a.java, line(s) 145 P1/b.java, line(s) 144,146,150 P1/e.java, line(s) 53 P1/f.java, line(s) 222,305,329,346 P1/g.java, line(s) 451,511,514 P1/q.java, line(s) 44 P1/r.java, line(s) 87,89 P9/C0081p.java, line(s) 142,102 P9/C1100p.java, line(s) 152,112 Pb/k.java, line(s) 46,45,45 Pd/C6257a.java, line(s) 668,671,1232,1242,1259,1269,1272,1276,1277,1266 Pd/a.java, line(s) 497,500,764,774,791,801,804,808,809,798 Qd/C6345a.java, line(s) 46,54,62,70,77,85 R/C2196h.java, line(s) 88,138,150,160 R/C2197i.java, line(s) 163 R/C6431h.java, line(s) 92,142,154,164 R/C6432i.java, line(s) 166 R2/C6450a.java, line(s) 2690 R9/C6460c.java, line(s) 260,261 R9/c.java, line(s) 248,249 S5/AbstractC6603e.java, line(s) 20,26 S5/C2325g.java, line(s) 83 S5/C6605g.java, line(s) 85 S5/e.java, line(s) 20,26 S6/H.java, line(s) 46,106,45,96,105,97 S6/n.java, line(s) 481,131,168,480,327 S6/o.java, line(s) 145,146 S6/y.java, line(s) 61 S9/K.java, line(s) 12,18,20,29 Sa/AbstractBinderC6685q.java, line(s) 45 Sa/AbstractC0490u.java, line(s) 75,79,113,183,187,40 Sa/AbstractC6677i.java, line(s) 36 Sa/AbstractC6689u.java, line(s) 78,82,116,186,190,43 Sa/C0482e.java, line(s) 84,130,137 Sa/C0488n.java, line(s) 35,37,30 Sa/C0495z.java, line(s) 62,65,33 Sa/C6673e.java, line(s) 87,136,143 Sa/C6674f.java, line(s) 98,36,126,132,137,150,158,169 Sa/C6678j.java, line(s) 107,116 Sa/C6682n.java, line(s) 39,41,34 Sa/C6694z.java, line(s) 67,70,38 Sa/HandlerC0487m.java, line(s) 28 Sa/HandlerC6681m.java, line(s) 31 Sa/P1.java, line(s) 56,63,74,79,55,62,67,73,78,68 Sa/RunnableC0175r0.java, line(s) 111,164,172 Sa/RunnableC1283r0.java, line(s) 127,180,188 Sa/V.java, line(s) 158 Sc/f.java, line(s) 16 Sk/a.java, line(s) 77 T0/C0674z.java, line(s) 630 T0/C1358z.java, line(s) 1682 T7/AbstractC2413c.java, line(s) 25 T7/AbstractC6790c.java, line(s) 25 T8/AbstractC0002i.java, line(s) 118 T8/AbstractC6803i.java, line(s) 167,191,218,256,264,161,183,192,219,259,265,271,168,295 T8/B.java, line(s) 193 T8/C0682h.java, line(s) 70,75,80 T8/C1367h.java, line(s) 73,78,83 T8/C2420d.java, line(s) 111 T8/C2424j.java, line(s) 68,88,103 T8/C6798d.java, line(s) 113 T8/C6804j.java, line(s) 71,91,106 T9/j.java, line(s) 20,26,28,37,44,50,52,61,68,74,76,118,86,92,94,103 Tb/e.java, line(s) 75,98,74,97 Th/b.java, line(s) 137,138 Tp/a.java, line(s) 110,120,190,109,362 U6/C6935e.java, line(s) 273,272 U6/e.java, line(s) 246,245 U8/C2512h.java, line(s) 78,293 U8/C6995h.java, line(s) 153,368 Uj/a.java, line(s) 211,210 Uj/d.java, line(s) 453 Uo/C7047a.java, line(s) 903 Uo/a.java, line(s) 702 V4/C2546c.java, line(s) 104,112 V4/C7075c.java, line(s) 106,114 V4/C7089q.java, line(s) 192,332 V4/Q.java, line(s) 193,333 V4/c.java, line(s) 179 Vl/U0.java, line(s) 167 W1/a.java, line(s) 59,76,257,266 W2/C2597c.java, line(s) 319 W2/C7177c.java, line(s) 487 W5/i.java, line(s) 176 W6/C0740b.java, line(s) 85,86 W6/C0741c.java, line(s) 51,50 W6/C0743e.java, line(s) 53,52 W6/C2064b.java, line(s) 88,89 W6/C2065c.java, line(s) 56,55 W6/C2067e.java, line(s) 55,54 Wa/C7206a.java, line(s) 46,51,55,38,67,72 Wa/a.java, line(s) 80,103,182,256,268,89,97,110,199 Wb/a.java, line(s) 59 Wb/f.java, line(s) 45,57,62,65,69,88,108,150 X/AbstractC2630i.java, line(s) 51 X/AbstractC7260i.java, line(s) 53 X/p.java, line(s) 425,1030,424 X/w.java, line(s) 303 X1/g.java, line(s) 39,44 X1/h.java, line(s) 27 X1/i.java, line(s) 58 X1/j.java, line(s) 39 X1/k.java, line(s) 59,117 X1/m.java, line(s) 45,104,118,140,156 X2/f.java, line(s) 32 X2/m.java, line(s) 200 X8/C2675b.java, line(s) 50,62,125,153,164 X8/C7310a.java, line(s) 30,52,112,132,67,89,146,166 X8/C7311b.java, line(s) 53,65,128,156,167 X9/AbstractC7312a.java, line(s) 21,28,35,20,27,34 X9/a.java, line(s) 22,29,36,21,28,35 Xb/b.java, line(s) 350 Xb/e.java, line(s) 251 Xc/C2678C.java, line(s) 57 Xc/C2682G.java, line(s) 27,29 Xc/C2683H.java, line(s) 35,37 Xc/C7333C.java, line(s) 60 Xc/C7337G.java, line(s) 31,33 Xc/C7338H.java, line(s) 39,41 Xc/L.java, line(s) 22,24 Xc/M.java, line(s) 44,52,58,62 Xc/x.java, line(s) 10 Xc/z.java, line(s) 52 Y5/AbstractC2739a.java, line(s) 39,46,52 Y5/AbstractC7414a.java, line(s) 41,48,54 Y8/C2746b.java, line(s) 61,64,115,220,232 Y8/C7421b.java, line(s) 65,68,119,224,236 Yc/C2748B.java, line(s) 34,50,61,70,79 Yc/C2752c.java, line(s) 50,68 Yc/C7431B.java, line(s) 36,52,63,72,81 Yc/C7435c.java, line(s) 53,71 Yc/g.java, line(s) 83,94,95 Yc/l.java, line(s) 83,84,74 Yc/m.java, line(s) 31 Yc/n.java, line(s) 81 Yc/w.java, line(s) 30 Yc/x.java, line(s) 19 Yl/m.java, line(s) 480,517,555,574 Z4/C2782c.java, line(s) 66,110,146 Z4/C7496c.java, line(s) 66,110,146 Z4/e.java, line(s) 106,106,121,226,166,181,207 Z4/h.java, line(s) 64,74,102 Z5/AbstractC7507K.java, line(s) 162,166,170 Z5/g.java, line(s) 958 Z5/x.java, line(s) 43,49,55,61,67,73 Z6/C.java, line(s) 41,42 Z6/C2125b.java, line(s) 49,48,58,88,89 Z6/C2126c.java, line(s) 43,44 Z6/i.java, line(s) 20,25,21,28 Z6/k.java, line(s) 275,274,278 Z6/n.java, line(s) 20,27,125,139,150,173,207,214,229,19,26,114,124,136,149,172,182,202,213,220,224,228,231 Z6/t.java, line(s) 46,49,47,50 Z6/x.java, line(s) 51,57,63,69,75,82,88,103,115,52,58,64,70,76,83,89,116,104 Zb/AbstractC0526a.java, line(s) 34 Zb/AbstractC7549a.java, line(s) 42 Zb/C0534i.java, line(s) 128 Zb/C7557i.java, line(s) 132 Zb/f.java, line(s) 19,20 Zb/y.java, line(s) 22,31,30,36,37 Zc/C0122e.java, line(s) 63 Zc/C7562e.java, line(s) 69 Zn/C2178p.java, line(s) 222,224,227,230,304,367,369,372,375,449,512,514,517,520,594,214,359,504 app/futured/donut/DonutProgressView.java, line(s) 362 b3/d.java, line(s) 115 bb/C0245i.java, line(s) 40 bb/C0252p.java, line(s) 34 bb/C2737i.java, line(s) 45 bb/C2744p.java, line(s) 38 bb/S.java, line(s) 160,167,161,168 bb/o0.java, line(s) 127,128,73 bb/q0.java, line(s) 51,65,95 bg/C1069c.java, line(s) 85,90 bg/C2766c.java, line(s) 87,92 c2/k.java, line(s) 23,35 com/appsflyer/internal/AFg1fSDK.java, line(s) 66,112,81,70,76,74 com/canhub/cropper/CropImageActivity.java, line(s) 496,512 com/canhub/cropper/CropImageView.java, line(s) 1014 com/canhub/cropper/CropOverlayView.java, line(s) 229 com/cardreader/card_reader_lib/CardTask.java, line(s) 52,54,117,119,121,128,132,167,195,198,201,359,388,67,171 com/caverock/androidsvg/SVGImageView.java, line(s) 49,134,147,64 com/faltenreich/skeletonlayout/SkeletonLayout.java, line(s) 49,59,92 com/github/mikephil/charting/charts/BarChart.java, line(s) 44 com/github/mikephil/charting/charts/BarLineChartBase.java, line(s) 137,140,529,588,769,775 com/github/mikephil/charting/charts/Chart.java, line(s) 213,397,374,455,508,512,563,524 com/github/mikephil/charting/charts/CombinedChart.java, line(s) 66 com/github/mikephil/charting/charts/HorizontalBarChart.java, line(s) 41,180,181 com/github/mikephil/charting/charts/PieRadarChartBase.java, line(s) 161 com/pairip/SignatureCheck.java, line(s) 33 com/pairip/VMRunner.java, line(s) 49,56,91,158,185,190,195 com/pairip/licensecheck/LicenseActivity.java, line(s) 93,71 com/pairip/licensecheck/LicenseClient.java, line(s) 77,90,121,138,168,196,187,112 com/paytm/pgsdk/g.java, line(s) 687 com/paytm/pgsdk/l.java, line(s) 448 com/razorpay/UpiTurboUtilities.java, line(s) 15,26,37,17,28,39 com/smartlook/C1141b.java, line(s) 37,84 com/smartlook/C3282b.java, line(s) 48,95 com/vlv/aravali/coins/ui/fragments/q2.java, line(s) 160 com/vlv/aravali/master/ui/C1305a.java, line(s) 92,91 com/vlv/aravali/master/ui/C3446a.java, line(s) 98,97 com/vlv/aravali/utils/loadingIndicator/AVLoadingIndicatorView.java, line(s) 264 com/vlv/aravali/views/activities/A.java, line(s) 599,600 com/vlv/aravali/views/activities/B.java, line(s) 221,225,229,233,361,1023 com/vlv/aravali/views/activities/C1750f.java, line(s) 151 com/vlv/aravali/views/activities/C3891f.java, line(s) 170 com/vlv/aravali/views/activities/l0.java, line(s) 390,434,146 com/vlv/aravali/views/fragments/C1810k.java, line(s) 59,505 com/vlv/aravali/views/fragments/C1825n2.java, line(s) 574,791 com/vlv/aravali/views/fragments/C1826o.java, line(s) 504,512,274,597 com/vlv/aravali/views/fragments/C1851v0.java, line(s) 119 com/vlv/aravali/views/fragments/C3951k.java, line(s) 85,548 com/vlv/aravali/views/fragments/C3966n2.java, line(s) 624,842 com/vlv/aravali/views/fragments/C3967o.java, line(s) 555,563,310,672 com/vlv/aravali/views/fragments/C3992v0.java, line(s) 156 com/vlv/aravali/views/fragments/SettingsFragment.java, line(s) 1043 com/yellowmessenger/ymchat/f.java, line(s) 108,109 d7/C1211a.java, line(s) 50,112,129,135,140,58,113,130,136,141 d7/C4078a.java, line(s) 53,115,132,138,143,61,116,133,139,144 d7/h.java, line(s) 50,51 easypay/appinvoke/actions/o.java, line(s) 70 easypay/appinvoke/utils/AnalyticsService.java, line(s) 35 easypay/appinvoke/widget/OtpEditText.java, line(s) 361,365 eb/a.java, line(s) 34 eb/f.java, line(s) 43 ec/b.java, line(s) 10,9 eg/C4311b.java, line(s) 224 em/C1904b.java, line(s) 54 em/C4332b.java, line(s) 57 fl/r.java, line(s) 333 g4/i.java, line(s) 22,41 g8/C0064i.java, line(s) 36,42,54,62,69,75,86,135,160,182,301,319,371,395,487,493,499,513,528,562,569,577,584,590,595,620,627,634,642,648,653,659,664,670,680,690,729,736,796,804,909,927,945,960,967,975,1015,1023,1049,1056,1067,1105,1118,1125,1137,1144,1152,1169,1176,1192,1209,1239,1257,1265,1273,1282,1289 g8/C4642i.java, line(s) 37,43,55,63,70,76,87,136,161,183,302,320,372,396,488,494,500,514,529,563,570,578,585,591,596,621,628,635,643,649,654,660,665,671,681,691,730,737,797,805,910,928,946,961,968,976,1016,1024,1050,1057,1068,1106,1119,1126,1138,1145,1153,1170,1177,1193,1210,1240,1258,1266,1274,1283,1290 gd/c.java, line(s) 26 gd/g.java, line(s) 32 h2/C1648e.java, line(s) 197 h2/C4826e.java, line(s) 209 h5/C1680j.java, line(s) 44 h5/C1690u.java, line(s) 118 h5/C4859j.java, line(s) 48 h5/C4869u.java, line(s) 119 h5/K.java, line(s) 232 h5/b.java, line(s) 158,164 h5/c0.java, line(s) 721,839,842,843,862,865 h8/b.java, line(s) 962,1022,670,942,948,961,943,949 hg/g.java, line(s) 165 i1/a.java, line(s) 74 i1/t.java, line(s) 267 i5/C5029g.java, line(s) 76,79 i5/C5040r.java, line(s) 86,89 i5/g.java, line(s) 75,78 i5/m.java, line(s) 448,596,447,459,460 i5/r.java, line(s) 80,83 i5/y.java, line(s) 260,292,248,249 i7/j.java, line(s) 475,22,309,342 in/juspay/hyper/core/JuspayLogger.java, line(s) 19,27,91,35,82 in/juspay/hypersdk/core/AndroidInterface.java, line(s) 460,703,751 in/juspay/hypersmshandler/b.java, line(s) 121,122,158,159 m3/k.java, line(s) 322,551,300 m6/l.java, line(s) 246,249,253 mf/f.java, line(s) 61,64,73,69 mo/a.java, line(s) 137 n0/f.java, line(s) 100 o7/AbstractC2067j.java, line(s) 397,376 o7/AbstractC6127j.java, line(s) 503,482 p6/a.java, line(s) 85,84 pa/d.java, line(s) 38 pa/i.java, line(s) 188,189 q8/C0114A.java, line(s) 111,127 q8/C6338A.java, line(s) 116,132 q8/g.java, line(s) 298,67,358 q8/i.java, line(s) 156 q8/j.java, line(s) 403,417,428 q8/p.java, line(s) 675 qk/b.java, line(s) 206 r3/HandlerC6451a.java, line(s) 199,206,214 ra/b.java, line(s) 90,105,89,104,128 ra/d.java, line(s) 37,36 ra/e.java, line(s) 43,56,77,42,55,76,73,97,109 ra/f.java, line(s) 16,13,13 ra/i.java, line(s) 58,57 ra/j.java, line(s) 41,40,54,77,104,124,132,55,78,105,125,133 ra/k.java, line(s) 34,45,33,44 ra/l.java, line(s) 186,185 s/ViewOnKeyListenerC6506e.java, line(s) 440 s4/AbstractC6583s.java, line(s) 540,553,606 s4/H0.java, line(s) 972 s4/P0.java, line(s) 198 s4/V.java, line(s) 22 s4/Z.java, line(s) 569 t4/C.java, line(s) 53,74 t4/C2383m.java, line(s) 44,66 t4/C6752l.java, line(s) 13,33 t4/C6753m.java, line(s) 46,68 t4/L.java, line(s) 12,31 t4/RunnableC2391w.java, line(s) 46,51,63 t4/RunnableC2393y.java, line(s) 40,60 t4/RunnableC6762w.java, line(s) 52,57,69 t4/RunnableC6764y.java, line(s) 44,64 t4/V.java, line(s) 1403,1398 t4/X.java, line(s) 43 t4/c0.java, line(s) 8 t4/h0.java, line(s) 69,81,89 t5/m.java, line(s) 64,67,70,73,166,169,172,175,218,220,222,224,226,228 u4/AbstractC2451a.java, line(s) 148,150,43,50,57,59,65,53,61,67,117 u4/AbstractC6926a.java, line(s) 132,214,216,46,53,60,62,68,56,64,70,84,89,98,114,183 u4/C6929d.java, line(s) 42,53,55,95,111,187,210,215,217,226,231,269,271,285,330,88,202,266,273,299,309,334,353 u4/d.java, line(s) 38,49,51,91,107,183,206,211,213,222,227,265,267,281,326,84,198,262,269,295,305,330,349 u7/P0.java, line(s) 62 u7/Q0.java, line(s) 57 u7/S0.java, line(s) 546,1351,604,115,187,1002,1014,1034,1081,1091 u7/T0.java, line(s) 44 u7/e1.java, line(s) 779,811,837,996,842 uq/a.java, line(s) 704,722,783,792,537,703,721,782,719,767,775,789 v0/C2528b.java, line(s) 105,109,113 v0/C7054b.java, line(s) 107,111,115 v0/g.java, line(s) 22 x6/AbstractC2669d.java, line(s) 22,32 x6/AbstractC7302d.java, line(s) 23,33 y6/b.java, line(s) 67,68 z0/C2775k.java, line(s) 165,227 z0/C7489k.java, line(s) 172,234,567 z2/f.java, line(s) 54,63,93,124 z2/h.java, line(s) 46,57 za/C7548a.java, line(s) 74,93 zd/a.java, line(s) 51,67,53,64
安全提示信息 此应用程序将数据复制到剪贴板。敏感数据不应复制到剪贴板,因为其他应用程序可以访问它
此应用程序将数据复制到剪贴板。敏感数据不应复制到剪贴板,因为其他应用程序可以访问它 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04b-Mobile-App-Security-Testing.md#clipboard Files: Ah/e.java, line(s) 13,270 Je/m.java, line(s) 6,38 T0/C0639g.java, line(s) 4,26,30 T0/C1321g.java, line(s) 4,28,32 com/vlv/aravali/master/ui/C1372q2.java, line(s) 4,62,63 com/vlv/aravali/master/ui/C3513q2.java, line(s) 5,69,70 com/vlv/aravali/payments/legacy/ui/fragment/V.java, line(s) 10,356,357 com/vlv/aravali/signup/ui/fragments/C1709h0.java, line(s) 11,181 com/vlv/aravali/signup/ui/fragments/C3850h0.java, line(s) 16,199 com/vlv/aravali/signup/ui/fragments/p1.java, line(s) 10,189 com/vlv/aravali/views/activities/B.java, line(s) 8,570 com/vlv/aravali/views/activities/WebViewActivity.java, line(s) 6,116,117 com/vlv/aravali/views/fragments/SettingsFragment.java, line(s) 15,1035,1036 in/juspay/hypersdk/core/JBridge.java, line(s) 7,403
安全提示信息 应用程序可以写入应用程序目录。敏感信息应加密
应用程序可以写入应用程序目录。敏感信息应加密 Files: T8/H.java, line(s) 69,69 com/vlv/aravali/views/activities/l0.java, line(s) 96,96 g8/b.java, line(s) 85,85
安全提示信息 应用与Firebase数据库通信
该应用与位于 https://aravali-2dbcd.firebaseio.com 的 Firebase 数据库进行通信
已通过安全项 此应用程序使用SSL Pinning 来检测或防止安全通信通道中的MITM攻击
此应用程序使用SSL Pinning 来检测或防止安全通信通道中的MITM攻击 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05g-Testing-Network-Communication.md#testing-custom-certificate-stores-and-certificate-pinning-mstg-network-4 Files: Ai/g.java, line(s) 105,104 co/AbstractC3145c.java, line(s) 54,60,40 com/vlv/aravali/KukuFMApplication.java, line(s) 175,108 com/vlv/aravali/analytics/EventsUploadNoAuthWorker.java, line(s) 36,29 in/juspay/hypersdk/security/HyperSSLSocketFactory.java, line(s) 69,61,68,67,67 wi/c.java, line(s) 11,11
已通过安全项 此应用程序可能具有Root检测功能
此应用程序可能具有Root检测功能 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05j-Testing-Resiliency-Against-Reverse-Engineering.md#testing-root-detection-mstg-resilience-1 Files: Fc/h.java, line(s) 94,94,95 Io/sentry/android/core/internal/util/e.java, line(s) 24,24,24,24,24,24 Ob/j.java, line(s) 56 Tb/g.java, line(s) 50 Zb/f.java, line(s) 37 com/smartlook/c4.java, line(s) 15,15,15,15,15,15 in/juspay/hypersdk/data/SessionInfo.java, line(s) 121,125
重点安全关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (app-measurement.com) 通信。
{'ip': '216.58.214.14', 'country_short': 'CN', 'country_long': '中国', 'region': '上海', 'city': '上海', 'latitude': '31.224333', 'longitude': '121.468948'}
重点安全关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (firebase-settings.crashlytics.com) 通信。
{'ip': '34.160.66.85', 'country_short': 'CN', 'country_long': '中国', 'region': '上海', 'city': '上海', 'latitude': '31.224333', 'longitude': '121.468948'}
综合安全基线评分总结
Bhakti v5.4.0
Android APK
47
综合安全评分
中风险