ID HACKAPP:COM.CARTOONIMAGE.MAGICCREATOR.APK
Type hackapp
Reporter Hackapp.org
Modified 2016-04-01T09:19:11
Description
HackApp vulnerability scanner discovered that application Cartoon Image Creator PRO published at the 'play' market has multiple vulnerabilities.
{"cvelist": [], "published": "2016-04-01T09:19:11", "bulletinFamily": "software", "objectVersion": "1.2", "href": "https://hackapp.com/report/6df31483debe2de4691dbfa48f7fb97b", "lastseen": "2016-09-26T20:43:22", "id": "HACKAPP:COM.CARTOONIMAGE.MAGICCREATOR.APK", "hackapp": {"link": "https://play.google.com/store/apps/details?id=com.CartoonImage.MagicCreator&hl=en", "bugs": [{"description": "Are you sure these files should be here?", "severity": "notice", "id": "1027c0f1b25337e4adea41da52951aae", "name": "Suspicious files"}, {"description": "All items deleted with 'file.delete()' could be recovered.", "severity": "notice", "id": "3d79c8313e56731b18139c09703a371e", "name": "Unsafe deleting"}, {"description": "Function 'Runtime.getRuntime().exec()' is used, please check where variables are come from.", "severity": "medium", "id": "b4553021a5ff900517be4fd049c74e68", "name": "Runtime command execution"}, {"description": "The app should be compliant with open source license requirements.", "severity": "critical", "id": "2a7d9548529fbf234759065d8b28bafa", "name": "MIT license"}], "vendor": "Image Manufactory", "release": "2015-12-25T00:00:00", "version": "1.3", "apk": "COM.CARTOONIMAGE.MAGICCREATOR.APK", "store": "play", "name": "Cartoon Image Creator PRO", "icon": "http://lh4.ggpht.com/-_dNXVLLEdoKWNSPfV6rYT7y1AEVaNUYJJXuvFVFVH00LgKCD0D8u-XjKYrw35qGgss=w300"}, "reporter": "Hackapp.org", "references": ["https://play.google.com/store/apps/details?id=com.CartoonImage.MagicCreator&hl=en"], "hashmap": [{"hash": "77aec0b1dd5b352e856e92f2009043d3", "key": "affectedSoftware"}, {"hash": "f9fa10ba956cacf91d7878861139efb9", "key": "bulletinFamily"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvelist"}, {"hash": "d4be9c4fc84262b4f39f89565918568f", "key": "cvss"}, {"hash": "bec339fc3cea4c60dce3b6e8ec4bee1c", "key": "description"}, {"hash": "305c7560b22254202559738a0d11ff4d", "key": "hackapp"}, {"hash": "90b802940e3afb06f66d740f37f3efec", "key": "href"}, {"hash": "b4b895a170df26cbc73e25ce695e5e87", "key": "modified"}, {"hash": "56765472680401499c79732468ba4340", "key": "objectVersion"}, {"hash": "b4b895a170df26cbc73e25ce695e5e87", "key": "published"}, {"hash": "4e34c603ccbe08e57f5000de7748e9c4", "key": "references"}, {"hash": "3b012aae1848bb95fe11f3cebae83cb0", "key": "reporter"}, {"hash": "60b728f3d99ac7a91cd482eb41102201", "key": "title"}, {"hash": "96e87ef1fcc8d9d3cdd337488987c423", "key": "type"}, {"hash": "cfcd208495d565ef66e7dff9f98764da", "key": "viewCount"}], "description": "HackApp vulnerability scanner discovered that application Cartoon Image Creator PRO published at the 'play' market has multiple vulnerabilities.", "modified": "2016-04-01T09:19:11", "cvss": {"vector": "NONE", "score": 0.0}, "viewCount": 1, "type": "hackapp", "affectedSoftware": [{"name": "Cartoon Image Creator PRO", "operator": "le", "version": "1.3"}], "title": "Cartoon Image Creator PRO - MIT license, Runtime command execution, Suspicious files vulnerabilities", "hash": "b3c455887b75933a352fb14fc760fa3f18111ec4c57aa5006a7de4651b6439bb", "history": [], "edition": 1, "enchantments": {"vulnersScore": 8.3}}
{"result": {}}
