-
### Finding Description
The app uses a vulnerable version of the play-services-basement library.
The play-services-basement library in versions prior to 18.0.2 is affected by [CVE-2022-2390](https:/…
-
### Finding Description
The app uses a vulnerable version of the play-services-basement library.
The play-services-basement library in versions prior to 18.0.2 is affected by [CVE-2022-2390](https:/…
-
Add missing reverse engineering testcases for iOS given the following MASVS requirements:
- [x] 8.4 The app detects, and responds to, the presence of widely used reverse engineering tools and frame…
-
### Finding Description
The application has globally disabled App Transport Security (ATS).
ATS helps ensure secure connections between an app and the back end server(s) and is a client side protect…
-
### Finding Description
Files were found to be world-writable during dynamic analysis. Although it is possible that the permissions on the respective file(s) were changed later during runtime, the is…
-
### Finding Description
The app has globally allowed insecure connections.
By default, Android prohibits the use of cleartext communications in apps targeting Android 9 or above. If your app explici…
-
### Finding Description
The app is allowing debuggable webviews. If an attacker gained access to an unlocked device, they can use those webviews to access data on the device. That data can even be in…
-
when i scan a project , i get result like this
```
Language: C#
Severity: INFO
Line: 28916
Column: 14
SecurityTool: HorusecEngine
Confidence: LOW
File: /home/Jonas/Project/WebGoat.NET/WebGoat…
-
### Finding Description
The application was signed using a key length less than or equal to 1024 bits, making it potentially vulnerable brute force attacks that can result in forged digital signature…
-
### Finding Description
The application was signed using a key length less than or equal to 1024 bits, making it potentially vulnerable brute force attacks that can result in forged digital signature…