SUMMARY
ISSUES SEVERITY
MANIFEST SCANNER
exported activity
MEDIUM
resources/AndroidManifest.xml
VULNERABILITIES
Weak Crypto Algorithms
MEDIUM
sources/we0/p.java
STRINGS
json web token
MEDIUM
resources/assets/api_key.txt
ASSETS
file path
LOW
resources/AndroidManifest.xml
0 CRITICAL severity MANIFEST issues present
0 HIGH severity MANIFEST issues present
13 MEDIUM severity MANIFEST issues present
0 LOW severity MANIFEST issues present
0 INFO severity MANIFEST issues present
0 RESILIENCE severity MANIFEST issues present
0 CRITICAL severity VULNERABILITIES issues present
0 HIGH severity VULNERABILITIES issues present
27 MEDIUM severity VULNERABILITIES issues present
35 LOW severity VULNERABILITIES issues present
40 INFO severity VULNERABILITIES issues present
0 RESILIENCE severity VULNERABILITIES issues present
0 CRITICAL severity STRINGS issues present
0 HIGH severity STRINGS issues present
22 MEDIUM severity STRINGS issues present
143 LOW severity STRINGS issues present
0 INFO severity STRINGS issues present
0 RESILIENCE severity STRINGS issues present
0 CRITICAL severity ASSETS issues present
0 HIGH severity ASSETS issues present
36 MEDIUM severity ASSETS issues present
1485 LOW severity ASSETS issues present
0 INFO severity ASSETS issues present
0 RESILIENCE severity ASSETS issues present
ISSUES
Weak Crypto Algorithms - 13 issues
Super user privileges may be requested - 8 issues
Possible Object Deserialization - 6 issues
Insecure HTTP Client Used - 1 issues
CBC Padding Oracle Attack Possible - 2 issues
Accept Self Signed Certificate - 8 issues
Insecure Pending Intent - 1 issues
SSL pinning by app - 3 issues
Insecure Random Used - 37 issues
Possible Command Injection - 1 issues
Check for rooted device by app - 10 issues
WebView javascript enabled - 7 issues
Storage of sensitive information in Shared Preferences - 3 issues
Frida server detection by app - 1 issues
Remote WebView debugging enabled - 1 issues
MALWARES
0
MALWARES
APKiD
18
APKiD
STRINGS
JSON Web Token - 1 matches
Google API Key - 5 matches
Possible Secret Detected - 21 matches
Unknown High Entropy String - 127 matches
Possible UUID - 11 matches
ASSETS
File path - 406 matches
URL - 450 matches
Hostname - 255 matches
Filename - 56 matches
IP URL - 3 matches
REST API - 270 matches
PERMISSIONS SUMMARY
Permissions
Count
Safe
8
Risky
12
Dangerous
1
ASSETS WORDCLOUD
assets.juspay.in - 2 count
sachin.webscript.io - 1 count
easypay.paytm.com - 1 count
redesign-autocomplete.firebaseio.com - 1 count
logs.juspay.in - 3 count
debug.logs.juspay.net - 3 count
www.swiggy.com - 17 count
developer.truecaller.com - 1 count
play.google.com - 4 count
api.rudderlabs.com - 2 count
hosted.rudderlabs.com - 3 count
www.opengis.net - 12 count
www.google.com - 3 count
earth.google.com - 2 count
ge-map-overlays.appspot.com - 2 count
TRACKERS
8
TRACKERS
THIRD PARTY LIBRARIES
112
THIRD PARTY LIBRARIES
CONTACT
Website
Email
HIDE REPORT
Are you the developer or owner of this app? Choose to keep your report private from BeVigil's Search for 30 days.