CloudSEK logo
AboutAsset ExplorerContactBlogScan App
LOGIN
com.wikibuy.prod.main

Capital One Shopping

com.wikibuy.prod.main (2.96.0)

Security Rating
7.3
AVERAGE
DOWNLOAD REPORT
VIEW CERTIFICATE
HIDE REPORT
SHARE
Use BeVigil on your Phone
Download the BeVigil App
BeVigil playstore
BeVigil playstore
OPEN REPORT MENU
SUMMARY
ISSUES SEVERITY
MANIFEST SCANNER
uses cleartext traffic
HIGH
resources/AndroidManifest.xml
VULNERABILITIES
possible task hijacking
MEDIUM
resources/AndroidManifest.xml
STRINGS
generic basic auth token
MEDIUM
resources/assets/mobileExtension/index.js
ASSETS
file path
LOW
resources/AndroidManifest.xml
0 CRITICAL severity MANIFEST issues present
1 HIGH severity MANIFEST issues present
2 MEDIUM severity MANIFEST issues present
0 LOW severity MANIFEST issues present
0 INFO severity MANIFEST issues present
0 RESILIENCE severity MANIFEST issues present
0 CRITICAL severity VULNERABILITIES issues present
0 HIGH severity VULNERABILITIES issues present
1 MEDIUM severity VULNERABILITIES issues present
9 LOW severity VULNERABILITIES issues present
15 INFO severity VULNERABILITIES issues present
0 RESILIENCE severity VULNERABILITIES issues present
0 CRITICAL severity STRINGS issues present
0 HIGH severity STRINGS issues present
3 MEDIUM severity STRINGS issues present
2092 LOW severity STRINGS issues present
0 INFO severity STRINGS issues present
0 RESILIENCE severity STRINGS issues present
0 CRITICAL severity ASSETS issues present
0 HIGH severity ASSETS issues present
0 MEDIUM severity ASSETS issues present
1504 LOW severity ASSETS issues present
0 INFO severity ASSETS issues present
0 RESILIENCE severity ASSETS issues present
ISSUES
Possible Task Hijacking - 1 issues
Weak Crypto Algorithms - 2 issues
Super user privileges may be requested - 5 issues
Possible Object Deserialization - 1 issues
Insecure Random Used - 12 issues
CBC Padding Oracle Attack Possible - 1 issues
Check for rooted device by app - 3 issues
MALWARES
0
MALWARES
APKiD
3
APKiD
STRINGS
Generic Basic Auth token - 1 matches
Facebook Client ID - 1 matches
Facebook Oauth - 1 matches
Google API Key - 2 matches
Facebook Client Token - 1 matches
Possible Secret Detected - 8 matches
ASSETS
File path - 389 matches
URL - 572 matches
Hostname - 136 matches
Relative Endpoint - 7 matches
REST API - 369 matches
Filename - 11 matches
PERMISSIONS SUMMARY
Permissions
Count
Safe
9
Risky
1
Dangerous
0
ASSETS WORDCLOUD
onyx-pad-673.firebaseio.com - 1 count
play.google.com - 1 count
reactjs.org - 1 count
capitaloneshopping.com - 2 count
client-logger-api.dev.ivaws.com - 1 count
client-logger-api.ivaws.com - 1 count
site.ivaws.com - 1 count
schema.org - 1 count
js.pusher.com - 1 count
pusher.com - 1 count
github.com - 1 count
api.wikibuy.com - 1 count
origin-site.dev.ivaws.com - 1 count
wwwapps.ups.com - 1 count
www.ups-mi.net - 1 count
TRACKERS
1
TRACKERS
New Relic
THIRD PARTY LIBRARIES
62
THIRD PARTY LIBRARIES
Android Support v4
Jetpack Activity
Jetpack Annotation
AppCompat
Jetpack API
Jetpack UI
Androidx Core
Exifinterface
Lifecycle
Loader
Media
Navigation
Room
Sqlite
CONTACT
Website
http://capitaloneshopping.com
Email
[email protected]
HIDE REPORT
Are you the developer or owner of this app? Choose to keep your report private from BeVigil's Search for 30 days.
HIDE
Capital One Shopping helps you save money while you shop online. Free for everyone - no Capital One account required With Capital One Shopping: - Find deals and savings from stores you love - Earn Rewards and redeem for gift cards - Easily find and apply available coupon codes - Enable Accessibility Service API and get free rewards offers in Chrome It does the work for you -- it s kinda genius. In the last year alone, Capital One Shopping found over $160 million in savings. Capital One Shopping is just another way Capital One is looking out for you and your money.