Lucene search
Hackapp.orgHACKAPP:COM.COMMALITE.SOLITAIRECOLLECTION.APKHistoryApr 01, 2016 - 9:49 a.m.
550+ Card Games Solitaire Pack - Dynamic Code Loading, External URLs, Native code usage vulnerabilities
2016-04-0109:49:38
Hackapp.org
hackapp.com
6
HackApp vulnerability scanner discovered that application 550+ Card Games Solitaire Pack published at the βplayβ market has multiple vulnerabilities.
Name
550+ Card Games Solitaire PackVendor
CommaLiteLink
COM.COMMALITE.SOLITAIRECOLLECTION.APKStore
playVersion
1.02- MEDIUM
- Dynamic Code Loading
Code for 'DexClassLoader' could be tampered.
- WebView files access
Control of WebView context allows to access local files.
- WebView JavaScript enabled
WebView 'setJavaScriptEnabled(true)' could be exploited during cross-site scripting attacks.
- NOTICE
- External URLs
Were do they point?
- Native code usage
Native code (.so) usage 'System.loadLibrary();' is found.
- Suspicious files
Are you sure these files should be here?
- Unsafe deleting
All items deleted with 'file.delete()' could be recovered.
| CPE | Name | Operator | Version |
|---|---|---|---|
| 550+ card games solitaire pack | le | 1.02 |