Ugly Princess Makeover - Customized SSL, Dangerous filesystem permissions, Hardcoded secrets vulnerabilities

HackApp vulnerability scanner discovered that application Ugly Princess Makeover published at the 'play' market has multiple vulnerabilities...

Movie Star Princess Makeover - Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Movie Star Princess Makeover published at the 'play' market has multiple vulnerabilities...

Princess Makeover: True Love - Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Princess Makeover: True Love published at the 'play' market has multiple vulnerabilities...

Princess Makeover: Girls Games - Customized SSL, Dangerous filesystem permissions, Redefined SSL Common Names verifier vulnerabilities

HackApp vulnerability scanner discovered that application Princess Makeover: Girls Games published at the 'play' market has multiple vulnerabilities...

Information disclosure

The Fairy Princess Makeover Salon aka com.mobgams.dressup.fairy.princess.makeover application 1.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-5846

The CVE-2014-5846 entry affects the Android app The Fairy Princess Makeover Salon (package com.mobgams.dressup.fairy.princess.makeover) version 1.7 . The vulnerability is that the app does not verify X.509 SSL certificates , enabling a Man‑in‑the‑Middle attacker to spoof servers and obtain sensit...