SUMMARY
ISSUES SEVERITY
MANIFEST SCANNER
exported activity
MEDIUM
resources/AndroidManifest.xml
VULNERABILITIES
Weak Crypto Algorithms
MEDIUM
sources/b5/b.java
STRINGS
google api key
LOW
resources/res/values/strings.xml
ASSETS
file path
LOW
resources/res/values/strings.xml
0 CRITICAL severity MANIFEST issues present
0 HIGH severity MANIFEST issues present
20 MEDIUM severity MANIFEST issues present
0 LOW severity MANIFEST issues present
0 INFO severity MANIFEST issues present
0 RESILIENCE severity MANIFEST issues present
0 CRITICAL severity VULNERABILITIES issues present
0 HIGH severity VULNERABILITIES issues present
54 MEDIUM severity VULNERABILITIES issues present
30 LOW severity VULNERABILITIES issues present
54 INFO severity VULNERABILITIES issues present
0 RESILIENCE severity VULNERABILITIES issues present
0 CRITICAL severity STRINGS issues present
0 HIGH severity STRINGS issues present
15 MEDIUM severity STRINGS issues present
1805 LOW severity STRINGS issues present
0 INFO severity STRINGS issues present
0 RESILIENCE severity STRINGS issues present
0 CRITICAL severity ASSETS issues present
0 HIGH severity ASSETS issues present
0 MEDIUM severity ASSETS issues present
6090 LOW severity ASSETS issues present
0 INFO severity ASSETS issues present
0 RESILIENCE severity ASSETS issues present
ISSUES
Weak Crypto Algorithms - 9 issues
Weak Crypto Algorithm - AES with weak ECB - 1 issues
Non-parameterized SQL Query - 8 issues
Tapjacking attack prevention by app - 2 issues
Possible Object Deserialization - 15 issues
Possible Task Hijacking - 21 issues
SSL pinning by app - 2 issues
Insecure Pending Intent - 1 issues
CBC Padding Oracle Attack Possible - 10 issues
Insecure Activity Start - 2 issues
Insecure Random Used - 52 issues
Accept Self Signed Certificate - 14 issues
Insecure Broadcast - 1 issues
MALWARES
0
MALWARES
APKiD
12
APKiD
STRINGS
Google API Key - 24 matches
Generic Basic Auth token - 15 matches
Sendbird Organization API - 1 matches
Unknown High Entropy String - 1110 matches
Possible UUID - 36 matches
Possible Secret Detected - 634 matches
ASSETS
File path - 2001 matches
URL - 2001 matches
Hostname - 1033 matches
REST API - 208 matches
Filename - 211 matches
Relative Endpoint - 8 matches
PERMISSIONS SUMMARY
Permissions
Count
Safe
14
Risky
11
Dangerous
0
ASSETS WORDCLOUD
paytmtravel-images-akamai.paytm.com - 2 count
assets.juspay.in - 3 count
easypay.paytm.com - 1 count
paytm-app-layer.firebaseio.com - 4 count
assetscdn.paytm.com - 5 count
logs.juspay.in - 3 count
debug.logs.juspay.net - 2 count
bit.ly - 2 count
securegw.paytm.in - 22 count
play.google.com - 19 count
storefront.paytm.com - 52 count
paytm.com - 38 count
cart.paytm.com - 11 count
pytm.my - 2 count
stocks-mini.paytmmoney.com - 2 count
TRACKERS
4
TRACKERS
THIRD PARTY LIBRARIES
83
THIRD PARTY LIBRARIES
CONTACT
Website
Email
HIDE REPORT
Are you the developer or owner of this app? Choose to keep your report private from BeVigil's Search for 30 days.