Lucene search
Hackapp.orgHACKAPP:COM.TIR.SIMULASYONU.APKHistoryApr 01, 2016 - 10:05 a.m.
T Truck Simulator - Dynamic Code Loading, External URLs, Native code usage vulnerabilities
2016-04-0110:05:55
Hackapp.org
hackapp.com
114
HackApp vulnerability scanner discovered that application T Truck Simulator published at the βplayβ market has multiple vulnerabilities.
Name
T Truck SimulatorVendor
Umisoft GamesLink
COM.TIR.SIMULASYONU.APKStore
playVersion
1.1- MEDIUM
- SD-card access
SD-cards and other external storages have 'worldwide read' policy.
- WebView JavaScript enabled
WebView 'setJavaScriptEnabled(true)' could be exploited during cross-site scripting attacks.
- Dynamic Code Loading
Code for 'DexClassLoader' could be tampered.
- WebView files access
Control of WebView context allows to access local files.
- NOTICE
- External URLs
Were do they point?
- Suspicious files
Are you sure these files should be here?
- Native code usage
Native code (.so) usage 'System.loadLibrary();' is found.
- Unsafe deleting
All items deleted with 'file.delete()' could be recovered.
| CPE | Name | Operator | Version |
|---|---|---|---|
| t truck simulator | le | 1.1 |