应用安全检测报告
应用安全检测报告,支持文件搜索、内容检索和AI代码分析
移动应用安全检测报告
CinemaHD - Stable v3.4.1
43
安全评分
安全基线评分
43/100
中风险
综合风险等级
风险等级评定
- A
- B
- C
- F
应用存在一定安全风险,建议优化
漏洞与安全项分布
8
高危
33
中危
2
信息
2
安全
隐私风险评估
10
第三方跟踪器
高隐私风险
检测到大量第三方跟踪器
检测结果分布
高危安全漏洞
8
中危安全漏洞
33
安全提示信息
2
已通过安全项
2
重点安全关注
1
高危安全漏洞 基本配置不安全地配置为允许到所有域的明文流量。
Scope: *
高危安全漏洞 已启用远程WebView调试
已启用远程WebView调试 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04c-Tampering-and-Reverse-Engineering.md#debugging-and-tracing Files: com/applovin/impl/adview/d.java, line(s) 145,10,11 com/original/tase/helper/http/cloudflare/WebViewResolver$resolveUsingWebView$5.java, line(s) 108,8,9
高危安全漏洞 不安全的Web视图实现。Web视图忽略SSL证书错误并接受任何SSL证书。此应用程序易受MITM攻击
不安全的Web视图实现。Web视图忽略SSL证书错误并接受任何SSL证书。此应用程序易受MITM攻击 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05g-Testing-Network-Communication.md#webview-server-certificate-verification Files: com/movie/ui/activity/RealDebridAuthWebViewActivity.java, line(s) 112,110 com/original/tase/helper/http/cloudflare/WebViewResolver$resolveUsingWebView$5.java, line(s) 62,60
高危安全漏洞 SSL的不安全实现。信任所有证书或接受自签名证书是一个关键的安全漏洞。此应用程序易受MITM攻击
SSL的不安全实现。信任所有证书或接受自签名证书是一个关键的安全漏洞。此应用程序易受MITM攻击 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05g-Testing-Network-Communication.md#android-network-apis Files: com/startapp/networkTest/net/WebApiClient.java, line(s) 70,18,19,20,21
高危安全漏洞 如果一个应用程序使用WebView.loadDataWithBaseURL方法来加载一个网页到WebView,那么这个应用程序可能会遭受跨站脚本攻击
如果一个应用程序使用WebView.loadDataWithBaseURL方法来加载一个网页到WebView,那么这个应用程序可能会遭受跨站脚本攻击 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05h-Testing-Platform-Interaction.md#static-analysis-7 Files: com/applovin/impl/adview/b.java, line(s) 561,14 com/applovin/impl/sdk/e/q.java, line(s) 111,4 com/chartboost/sdk/impl/s3.java, line(s) 97,6,7 com/startapp/c5.java, line(s) 71,9 com/startapp/lb.java, line(s) 469,24 com/startapp/sdk/ads/splash/SplashHtml.java, line(s) 73,7,8 com/unity3d/services/core/webview/WebViewApp.java, line(s) 365,10,59,65,79,108
高危安全漏洞 应用程序使用带PKCS5/PKCS7填充的加密模式CBC。此配置容易受到填充oracle攻击。
应用程序使用带PKCS5/PKCS7填充的加密模式CBC。此配置容易受到填充oracle攻击。 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#identifying-insecure-andor-deprecated-cryptographic-algorithms-mstg-crypto-4 Files: com/original/tase/helper/crypto/AES256Cipher.java, line(s) 15 com/original/tase/helper/crypto/AES256Cryptor.java, line(s) 52,67
高危安全漏洞 应用程序在加密算法中使用ECB模式。ECB模式是已知的弱模式,因为它对相同的明文块[UNK]产生相同的密文
应用程序在加密算法中使用ECB模式。ECB模式是已知的弱模式,因为它对相同的明文块[UNK]产生相同的密文 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#weak-block-cipher-mode Files: com/original/tase/helper/crypto/AESEncrypter.java, line(s) 38,52,65
高危安全漏洞 应用程序包含隐私跟踪程序
此应用程序有多个10隐私跟踪程序。跟踪器可以跟踪设备或用户,是终端用户的隐私问题。
中危安全漏洞 应用已启用明文网络流量
[android:usesCleartextTraffic=true] 应用允许明文网络流量(如 HTTP、FTP 协议、DownloadManager、MediaPlayer 等)。API 级别 27 及以下默认启用,28 及以上默认禁用。明文流量缺乏机密性、完整性和真实性保护,攻击者可窃听或篡改传输数据。建议关闭明文流量,仅使用加密协议。
中危安全漏洞 Activity (com.movie.ui.activity.MemberActivationActivity) 未受保护。
[android:exported=true] 检测到 Activity 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Activity (com.movie.ui.activity.shows.ShowActivity) 未受保护。
[android:exported=true] 检测到 Activity 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Activity (com.movie.ui.activity.MovieDetailsActivity) 未受保护。
[android:exported=true] 检测到 Activity 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Activity (com.movie.ui.activity.sources.SourceActivity) 未受保护。
[android:exported=true] 检测到 Activity 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Activity (com.movie.ui.activity.sources.seasonPack.SeasonPackActivity) 未受保护。
[android:exported=true] 检测到 Activity 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Service (com.utils.installer.PackageInstallerService) 未受保护。
[android:exported=true] 检测到 Service 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Service (com.movie.data.sync.PopularMoviesAuthenticatorService) 未受保护。
[android:exported=true] 检测到 Service 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Service (com.movie.data.sync.PopularMoviesSyncService) 未受保护。
[android:exported=true] 检测到 Service 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Activity (com.movie.ui.activity.player.PlayerActivity) 未受保护。
[android:exported=true] 检测到 Activity 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Service (com.google.android.exoplayer2.scheduler.PlatformScheduler$PlatformSchedulerService) 受权限保护,但应检查权限保护级别。
Permission: android.permission.BIND_JOB_SERVICE [android:exported=true] 检测到 Service 已导出并受未在本应用定义的权限保护。请在权限定义处核查其保护级别。若为 normal 或 dangerous,恶意应用可申请并与组件交互;若为 signature,仅同证书签名应用可访问。
中危安全漏洞 Activity (com.movie.ui.activity.MainActivity) 未受保护。
[android:exported=true] 检测到 Activity 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Activity (com.nononsenseapps.filepicker.FilePickerActivity) 未受保护。
[android:exported=true] 检测到 Activity 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Broadcast Receiver (com.utils.seriesguide.ExampleExtensionReceiver) 未受保护。
[android:exported=true] 检测到 Broadcast Receiver 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Service (com.utils.seriesguide.ExampleExtensionService) 受权限保护,但应检查权限保护级别。
Permission: android.permission.BIND_JOB_SERVICE [android:exported=true] 检测到 Service 已导出并受未在本应用定义的权限保护。请在权限定义处核查其保护级别。若为 normal 或 dangerous,恶意应用可申请并与组件交互;若为 signature,仅同证书签名应用可访问。
中危安全漏洞 Service (com.utils.seriesguide.ExampleExtension) 未受保护。
[android:exported=true] 检测到 Service 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Content Provider (com.extension.CinemaProvider) 受权限保护,但应检查权限保护级别。
Permission: com.domain.api.provider.ACCESS_PROVIDER [android:exported=true] 检测到 Content Provider 已导出并受未在本应用定义的权限保护。请在权限定义处核查其保护级别。若为 normal 或 dangerous,恶意应用可申请并与组件交互;若为 signature,仅同证书签名应用可访问。
中危安全漏洞 Service (com.google.android.gms.auth.api.signin.RevocationBoundService) 受权限保护,但应检查权限保护级别。
Permission: com.google.android.gms.auth.api.signin.permission.REVOCATION_NOTIFICATION [android:exported=true] 检测到 Service 已导出并受未在本应用定义的权限保护。请在权限定义处核查其保护级别。若为 normal 或 dangerous,恶意应用可申请并与组件交互;若为 signature,仅同证书签名应用可访问。
中危安全漏洞 Broadcast Receiver (com.startapp.sdk.adsbase.remoteconfig.BootCompleteListener) 未受保护。
[android:exported=true] 检测到 Broadcast Receiver 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Service (androidx.work.impl.background.systemjob.SystemJobService) 受权限保护,但应检查权限保护级别。
Permission: android.permission.BIND_JOB_SERVICE [android:exported=true] 检测到 Service 已导出并受未在本应用定义的权限保护。请在权限定义处核查其保护级别。若为 normal 或 dangerous,恶意应用可申请并与组件交互;若为 signature,仅同证书签名应用可访问。
中危安全漏洞 Broadcast Receiver (androidx.work.impl.diagnostics.DiagnosticsReceiver) 受权限保护,但应检查权限保护级别。
Permission: android.permission.DUMP [android:exported=true] 检测到 Broadcast Receiver 已导出并受未在本应用定义的权限保护。请在权限定义处核查其保护级别。若为 normal 或 dangerous,恶意应用可申请并与组件交互;若为 signature,仅同证书签名应用可访问。
中危安全漏洞 IP地址泄露
IP地址泄露 Files: com/original/tase/utils/SourceObservableUtils.java, line(s) 51 com/startapp/ac.java, line(s) 158 com/startapp/e2.java, line(s) 297 com/utils/Getlink/Provider/Cinema.java, line(s) 20,20,20 com/utils/subtitle/services/SubServiceBase.java, line(s) 227 fi/iki/elonen/NanoHTTPD.java, line(s) 277
中危安全漏洞 SHA-1是已知存在哈希冲突的弱哈希
SHA-1是已知存在哈希冲突的弱哈希 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#identifying-insecure-andor-deprecated-cryptographic-algorithms-mstg-crypto-4 Files: com/adcolony/sdk/d1.java, line(s) 9 com/adcolony/sdk/z0.java, line(s) 452 com/applovin/impl/sdk/utils/StringUtils.java, line(s) 30 com/applovin/impl/sdk/utils/m.java, line(s) 147 com/chartboost/sdk/impl/w1.java, line(s) 20 com/original/tase/helper/crypto/Sha1Cryptor.java, line(s) 21 com/unity3d/services/core/device/Device.java, line(s) 168
中危安全漏洞 应用程序使用不安全的随机数生成器
应用程序使用不安全的随机数生成器 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#weak-random-number-generators Files: com/applovin/impl/a/l.java, line(s) 17 com/movie/ui/widget/AnimatorStateView.java, line(s) 16 com/startapp/d8.java, line(s) 18 com/startapp/e2.java, line(s) 27 com/startapp/j8.java, line(s) 22 com/startapp/sdk/ads/banner/BannerBase.java, line(s) 29 com/startapp/u1.java, line(s) 22 com/startapp/y1.java, line(s) 4 com/unity3d/services/core/request/metrics/SDKMetrics.java, line(s) 9 com/utils/Getlink/Provider/ScnSrc.java, line(s) 23 com/utils/Getlink/Resolver/HdTv.java, line(s) 14 com/utils/Utils.java, line(s) 97 org/jsoup/helper/DataUtil.java, line(s) 13
中危安全漏洞 应用程序可以读取/写入外部存储器,任何应用程序都可以读取写入外部存储器的数据
应用程序可以读取/写入外部存储器,任何应用程序都可以读取写入外部存储器的数据 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05d-Testing-Data-Storage.md#external-storage Files: com/movie/ui/activity/autoupdate.java, line(s) 68,199 com/nononsenseapps/filepicker/FilePickerActivity.java, line(s) 13 com/original/tase/helper/PlayerHelper.java, line(s) 368 com/startapp/ac.java, line(s) 124 com/startapp/z0.java, line(s) 242,339 com/unity3d/services/core/cache/CacheDirectory.java, line(s) 54 com/utils/Utils.java, line(s) 671,118,177,276 com/vungle/warren/persistence/CacheManager.java, line(s) 103,105 com/vungle/warren/persistence/Repository.java, line(s) 84,85 com/vungle/warren/utility/platform/AndroidPlatform.java, line(s) 45
中危安全漏洞 MD5是已知存在哈希冲突的弱哈希
MD5是已知存在哈希冲突的弱哈希 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#identifying-insecure-andor-deprecated-cryptographic-algorithms-mstg-crypto-4 Files: com/original/tase/helper/crypto/MD5Utils.java, line(s) 25 com/startapp/j5.java, line(s) 53 com/utils/Utils.java, line(s) 1052
中危安全漏洞 文件可能包含硬编码的敏感信息,如用户名、密码、密钥等
文件可能包含硬编码的敏感信息,如用户名、密码、密钥等 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05d-Testing-Data-Storage.md#checking-memory-for-sensitive-data-mstg-storage-10 Files: com/applovin/impl/sdk/m.java, line(s) 662 com/applovin/mediation/ads/MaxAdView.java, line(s) 174,164 com/applovin/mediation/ads/MaxInterstitialAd.java, line(s) 87,77 com/applovin/mediation/ads/MaxRewardedAd.java, line(s) 116,106 com/applovin/mediation/ads/MaxRewardedInterstitialAd.java, line(s) 82,72 com/applovin/mediation/nativeAds/MaxNativeAdLoader.java, line(s) 80,75 com/applovin/sdk/AppLovinSdk.java, line(s) 232 com/applovin/sdk/AppLovinWebViewActivity.java, line(s) 19 com/movie/data/api/realdebrid/RealDebridModule.java, line(s) 45 com/movie/data/model/cinema/Video.java, line(s) 135 com/movie/data/model/tmvdb/Video.java, line(s) 135 com/movie/ui/activity/settings/subfragment/BackupRestoreFragment.java, line(s) 35 com/movie/ui/activity/settings/subfragment/PremiumAccountFragment.java, line(s) 304 com/original/tase/model/debrid/alldebrid/AllDebridUserInfor.java, line(s) 27 com/original/tase/model/debrid/realdebrid/RealDebridCredentialsInfo.java, line(s) 50 com/original/tase/model/debrid/realdebrid/RealDebridUserInfor.java, line(s) 27 com/startapp/networkTest/startapp/NetworkTester.java, line(s) 21,23,22 com/unity3d/ads/metadata/InAppPurchaseMetaData.java, line(s) 6 com/unity3d/services/ads/gmascar/utils/ScarConstants.java, line(s) 4,5,6,8,9 com/unity3d/services/core/configuration/ExperimentObject.java, line(s) 7,8 com/unity3d/services/core/device/reader/DeviceInfoReaderFilterProvider.java, line(s) 11,12 com/unity3d/services/core/device/reader/JsonStorageKeyNames.java, line(s) 4,6,7,8,10,11,12,13,9,14,5,15,16,17 com/unity3d/services/core/properties/SdkProperties.java, line(s) 28 com/utils/Getlink/Provider/AnimeShow.java, line(s) 82 com/utils/Utils.java, line(s) 1170 com/utils/subtitle/services/openSubtitle/models/LoginRequest.java, line(s) 69 com/uwetrottmann/trakt5/TraktV2.java, line(s) 47 com/vungle/warren/log/LogManager.java, line(s) 24,25,26,27 com/vungle/warren/log/LogSender.java, line(s) 22,23 com/vungle/warren/model/Cookie.java, line(s) 21,22
中危安全漏洞 应用程序使用SQLite数据库并执行原始SQL查询。原始SQL查询中不受信任的用户输入可能会导致SQL注入。敏感信息也应加密并写入数据库
应用程序使用SQLite数据库并执行原始SQL查询。原始SQL查询中不受信任的用户输入可能会导致SQL注入。敏感信息也应加密并写入数据库 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04h-Testing-Code-Quality.md#injection-flaws-mstg-arch-2-and-mstg-platform-2 Files: com/adcolony/sdk/n.java, line(s) 5,265,282 com/adcolony/sdk/o.java, line(s) 6,280 com/adcolony/sdk/p.java, line(s) 6,20 com/domain/api/provider/StreamProvider.java, line(s) 12,13,14,101 com/orm/SugarRecord.java, line(s) 4,5,6,120,124 com/startapp/b9.java, line(s) 6,102 com/startapp/t9.java, line(s) 6,48,49,50 com/vungle/warren/persistence/DatabaseHelper.java, line(s) 10,11,136 com/vungle/warren/persistence/Repository.java, line(s) 7,137 us/shandian/giga/get/sqlite/DownloadMissionSQLiteHelper.java, line(s) 6,7,68
中危安全漏洞 可能存在跨域漏洞。在 WebView 中启用从 URL 访问文件可能会泄漏文件系统中的敏感信息
可能存在跨域漏洞。在 WebView 中启用从 URL 访问文件可能会泄漏文件系统中的敏感信息 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05h-Testing-Platform-Interaction.md#static-analysis-6 Files: com/adcolony/sdk/b1.java, line(s) 759,753 com/chartboost/sdk/impl/z2.java, line(s) 20,19 com/startapp/sdk/ads/splash/SplashHtml.java, line(s) 65,64 com/unity3d/services/core/webview/WebView.java, line(s) 124,137 com/vungle/warren/ui/view/WebSettingsUtils.java, line(s) 16,12
中危安全漏洞 应用程序创建临时文件。敏感信息永远不应该被写进临时文件
应用程序创建临时文件。敏感信息永远不应该被写进临时文件 Files: fi/iki/elonen/NanoHTTPD.java, line(s) 195
中危安全漏洞 不安全的Web视图实现。可能存在WebView任意代码执行漏洞
不安全的Web视图实现。可能存在WebView任意代码执行漏洞 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05h-Testing-Platform-Interaction.md#testing-javascript-execution-in-webviews-mstg-platform-5 Files: com/movie/ui/activity/RealDebridAuthWebViewActivity.java, line(s) 214,199 com/startapp/sdk/ads/banner/bannerstandard/BannerStandard.java, line(s) 530,396 com/startapp/sdk/ads/splash/SplashHtml.java, line(s) 68,64 com/startapp/w3.java, line(s) 278,271 com/unity3d/services/ads/webplayer/WebPlayerView.java, line(s) 318,302 com/unity3d/services/core/webview/WebView.java, line(s) 185,137
中危安全漏洞 此应用程序可能会请求root(超级用户)权限
此应用程序可能会请求root(超级用户)权限 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05j-Testing-Resiliency-Against-Reverse-Engineering.md#testing-root-detection-mstg-resilience-1 Files: com/startapp/dc.java, line(s) 4,4,4,4,4,4
中危安全漏洞 此应用可能包含硬编码机密信息
从应用程序中识别出以下机密确保这些不是机密或私人信息 AppLovin广告SDK的=> "applovin.sdk.key" : "24_riDatI5254b1EXCxZuyWvXK8TKSe_AwT6H46MS77hW3idtPh0scWetkqwgvK-25r43v0-ROqqe077QVwIFe" AdMob广告平台的=> "com.google.android.gms.ads.APPLICATION_ID" : "ca-app-pub-4881714532467498~9370294694" "content_authority" : "com.yoku.marumovie.provider" "settings_file_replacement_character_key" : "file_replacement_character" "settings_file_charset_key" : "file_rename" "subtitles_encoding_key" : "subtitles_encoding_key" "twitter_consumer_secret" : "REPLACE_ME" "facebook_app_id" : "206384712882330" "password" : "Password" "twitter_consumer_key" : "REPLACE_ME" "start_phone_auth" : "Start" "verify_phone_auth" : "Verify" "download_path_key" : "pref_dowload_path3" "google_cast_app_id" : "23DCCF3C" "resend_phone_auth" : "Resend" b689d9614e9d4405dff0b55029b0ed71 7bf3a1e7bbd31e612eda3310c2cdb8075c43c6b5 827fd3ad693d520953527c856c9569f70402c65c key=AIzaSyBXV3qGJ2rwDaxvUmAzaVpZMmn1t6PyU0E bb2cf0647ba654d7228dd3f9405bbc6a Y29tLmFuZHJvaWQudmVuZGluZy5saWNlbnNpbmcuSUxpY2Vuc2luZ1NlcnZpY2U= 3A757365722F72656C656173652D6B657973 com/Vo9wbFH89BbDbWFhUezQZOGPKmfkJSAtIbVWk3QxPbvJwcR8I79EVuI0aB41a 9d67bbba437a1e94273db1f54b56fb84ff616b66db7e47c309bc19ccdf954c89 2F73797374656D2F6C69622F6C69627265666572656E63652D72696C2E736F 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 59f3f2c6eea6a57947436526559d5b9c awn58mirBRxoJiLKDzx6NWbjNHb8vKCd 026ae9c9824b3e483fa6c71fa88f57ae27816141 HSrCHRtOan6wp2kwOIGJC1RDtuSrF2mWVbio2aBcMHX9KF3iTJ1lLSzCKP1ZSo5yNolPNw1kCTtWpxELFF4ah1
安全提示信息 应用程序记录日志信息,不得记录敏感信息
应用程序记录日志信息,不得记录敏感信息 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05d-Testing-Data-Storage.md#logs Files: com/adcolony/sdk/g0.java, line(s) 71,89,93,214,77,282,83 com/adcolony/sdk/s0.java, line(s) 116,147,132 com/applovin/impl/adview/activity/b/f.java, line(s) 590 com/applovin/impl/sdk/a/f.java, line(s) 77,83,94 com/applovin/impl/sdk/f.java, line(s) 115,117 com/applovin/impl/sdk/nativeAd/AppLovinMediaView.java, line(s) 155 com/applovin/impl/sdk/v.java, line(s) 48,74,109,70,117,78,125,82,101 com/battlelancer/seriesguide/api/SeriesGuideExtension.java, line(s) 78,89,103,189,55,141 com/chartboost/sdk/Analytics.java, line(s) 71,84,92,105,125 com/chartboost/sdk/Chartboost.java, line(s) 42,100 com/chartboost/sdk/ads/Banner.java, line(s) 87 com/chartboost/sdk/ads/Interstitial.java, line(s) 67 com/chartboost/sdk/ads/Rewarded.java, line(s) 67 com/chartboost/sdk/impl/ae.java, line(s) 28,30 com/chartboost/sdk/impl/c.java, line(s) 304 com/chartboost/sdk/impl/c8.java, line(s) 763,781,828,852,1073,1110,1114,1118,1122,1126,1130,968 com/chartboost/sdk/impl/cb.java, line(s) 27 com/chartboost/sdk/impl/d1.java, line(s) 35 com/chartboost/sdk/impl/e1.java, line(s) 111 com/chartboost/sdk/impl/e3.java, line(s) 52 com/chartboost/sdk/impl/ed.java, line(s) 164,188,208,249,256,277,282,292,300,327,342,353,117 com/chartboost/sdk/impl/f3.java, line(s) 142 com/chartboost/sdk/impl/g4.java, line(s) 194 com/chartboost/sdk/impl/g6.java, line(s) 31 com/chartboost/sdk/impl/h0.java, line(s) 514,465,741 com/chartboost/sdk/impl/k6.java, line(s) 29 com/chartboost/sdk/impl/mb.java, line(s) 77,107,140,182,211,266,298,323 com/chartboost/sdk/impl/o0.java, line(s) 108 com/chartboost/sdk/impl/q8.java, line(s) 132 com/chartboost/sdk/impl/qa.java, line(s) 138 com/chartboost/sdk/impl/se.java, line(s) 18,11 com/chartboost/sdk/impl/u2.java, line(s) 60 com/chartboost/sdk/impl/vc.java, line(s) 73,81,84,98 com/chartboost/sdk/impl/w7.java, line(s) 17,25,58,33,41,49 com/chartboost/sdk/impl/y0.java, line(s) 34 com/chartboost/sdk/internal/Networking/NetworkHelper.java, line(s) 14 com/chartboost/sdk/internal/clickthrough/EmbeddedBrowserActivity.java, line(s) 230,286,295 com/chartboost/sdk/view/CBImpressionActivity.java, line(s) 89,237,101 com/domain/api/provider/StreamProvider.java, line(s) 153,193,194,244,358,154,245,359 com/iab/omid/library/adcolony/d/c.java, line(s) 18,11 com/iab/omid/library/applovin/d/c.java, line(s) 18,11 com/iab/omid/library/vungle/d/c.java, line(s) 18,11 com/jakewharton/disklrucache/DiskLruCache.java, line(s) 377 com/movie/ui/activity/MovieDetailsActivity.java, line(s) 327,329 com/movie/ui/activity/TestCrappers.java, line(s) 50 com/movie/ui/activity/autoupdate.java, line(s) 82 com/movie/ui/activity/gamechallenge/GameChallenge.java, line(s) 61,65 com/movie/ui/activity/payment/PaymentProcessingFragment.java, line(s) 157,161 com/movie/ui/activity/player/PlayerActivity.java, line(s) 2701 com/movie/ui/activity/sources/SourceActivity.java, line(s) 1143,1145 com/movie/ui/widget/glidepalette/BitmapPalette.java, line(s) 43 com/original/tase/api/TraktUserApi.java, line(s) 181 com/original/tase/helper/http/cloudflare/WebViewResolver$resolveUsingWebView$5$2$shouldInterceptRequest$1.java, line(s) 106,128 com/original/tase/helper/http/cloudflare/WebViewResolver$resolveUsingWebView$destroyWebView$1.java, line(s) 53 com/original/tase/utils/NetworkUtils.java, line(s) 28,32,36 com/orm/SugarRecord.java, line(s) 219,222,260,301,326,381,384,387,390,397 com/orm/util/ReflectionUtil.java, line(s) 29,49,107,114,135,137 com/reactnativecommunity/cookies/CookieManagerModule.java, line(s) 326,339 com/startapp/de.java, line(s) 55,58,68,166 com/startapp/ff.java, line(s) 46 com/startapp/lb.java, line(s) 568,570 com/startapp/p.java, line(s) 126,895,932 com/startapp/sdk/ads/banner/bannerstandard/BannerStandard.java, line(s) 937 com/startapp/sdk/ads/video/VideoMode.java, line(s) 913 com/startapp/sdk/adsbase/StartAppSDKInternal.java, line(s) 162 com/startapp/sdk/jobs/SchedulerService.java, line(s) 64 com/startapp/w3.java, line(s) 474 com/startapp/w6.java, line(s) 30,35,38,42 com/unity3d/ads/UnityAdsBaseOptions.java, line(s) 22 com/unity3d/ads/metadata/MetaData.java, line(s) 34,49 com/unity3d/services/UnityServices.java, line(s) 75,122,129,134,142,148,157,167,154,163,104 com/unity3d/services/ads/UnityAdsImplementation.java, line(s) 85,146 com/unity3d/services/ads/adunit/AdUnitActivityController.java, line(s) 359,361,52,128,186,219,260,290,310,376,224 com/unity3d/services/ads/adunit/AdUnitViewHandlerFactory.java, line(s) 22 com/unity3d/services/ads/adunit/VideoPlayerHandler.java, line(s) 17,35 com/unity3d/services/ads/api/AdUnit.java, line(s) 203,209,258,261,265,268,476,479,482,485,508,110,132,155,163,341,432,499,512,517,522 com/unity3d/services/ads/api/VideoPlayer.java, line(s) 59,77,100,149,160,178 com/unity3d/services/ads/api/WebPlayer.java, line(s) 52 com/unity3d/services/ads/gmascar/adapters/ScarAdapterFactory.java, line(s) 46 com/unity3d/services/ads/gmascar/bridges/AdapterStatusBridge.java, line(s) 21,39 com/unity3d/services/ads/gmascar/bridges/InitializeListenerBridge.java, line(s) 22,41 com/unity3d/services/ads/gmascar/bridges/mobileads/MobileAdsBridge.java, line(s) 21 com/unity3d/services/ads/gmascar/bridges/mobileads/MobileAdsBridgeLegacy.java, line(s) 23 com/unity3d/services/ads/gmascar/finder/GMAInitializer.java, line(s) 53 com/unity3d/services/ads/gmascar/finder/ScarVersionFinder.java, line(s) 37,49 com/unity3d/services/ads/token/InMemoryAsyncTokenStorage.java, line(s) 146,180 com/unity3d/services/ads/token/NativeTokenGenerator.java, line(s) 35 com/unity3d/services/ads/topics/TopicsReceiver.java, line(s) 36 com/unity3d/services/ads/topics/TopicsService.java, line(s) 56 com/unity3d/services/ads/video/VideoPlayerView.java, line(s) 45,48,72,115,120,142,185,197,229 com/unity3d/services/ads/webplayer/WebPlayerView.java, line(s) 64,70,295,337,388,403,418,431,639,641,658 com/unity3d/services/banners/BannerView.java, line(s) 123 com/unity3d/services/banners/UnityBanners.java, line(s) 329 com/unity3d/services/core/api/Cache.java, line(s) 164,178,54,130,183 com/unity3d/services/core/api/DeviceInfo.java, line(s) 143,161,182,320,346,360,413 com/unity3d/services/core/api/Intent.java, line(s) 50,64,210,234,249 com/unity3d/services/core/api/Request.java, line(s) 33,45,96,108,126,138 com/unity3d/services/core/api/Sdk.java, line(s) 17,38,54,80,86,92,98 com/unity3d/services/core/broadcast/BroadcastEventReceiver.java, line(s) 36 com/unity3d/services/core/cache/CacheDirectory.java, line(s) 24,26,65,69,78,103,107,113,120,29,58,73 com/unity3d/services/core/cache/CacheThread.java, line(s) 76 com/unity3d/services/core/cache/CacheThreadHandler.java, line(s) 40,43,47,70 com/unity3d/services/core/configuration/ConfigurationReader.java, line(s) 25 com/unity3d/services/core/configuration/ConfigurationRequestFactory.java, line(s) 33 com/unity3d/services/core/configuration/EnvironmentCheck.java, line(s) 29,41,32,44,47,50,53 com/unity3d/services/core/configuration/ExperimentObject.java, line(s) 24 com/unity3d/services/core/configuration/ExperimentsReader.java, line(s) 25 com/unity3d/services/core/configuration/InitializationNotificationCenter.java, line(s) 43 com/unity3d/services/core/configuration/InitializeEventsMetricSender.java, line(s) 42,52,60,70,165,172 com/unity3d/services/core/configuration/InitializeThread.java, line(s) 281,317,444,459,503,511,611,623,650,707,126,290,293,324,327,372,392,560,597,711,866,875,197,353,453,537 com/unity3d/services/core/configuration/PrivacyConfigurationLoader.java, line(s) 63 com/unity3d/services/core/connectivity/ConnectivityMonitor.java, line(s) 56,85,95,76,125 com/unity3d/services/core/device/AdvertisingId.java, line(s) 127,145,155 com/unity3d/services/core/device/Device.java, line(s) 170,479,530,539,290 com/unity3d/services/core/device/OpenAdvertisingId.java, line(s) 129,151,158 com/unity3d/services/core/device/Storage.java, line(s) 47,51,58 com/unity3d/services/core/device/reader/DeviceInfoReaderCompressor.java, line(s) 20,33 com/unity3d/services/core/device/reader/DeviceInfoReaderExtended.java, line(s) 45 com/unity3d/services/core/domain/task/InitializeStateConfig$doWork$2.java, line(s) 47 com/unity3d/services/core/domain/task/InitializeStateCreate$doWork$2.java, line(s) 44,53,56 com/unity3d/services/core/domain/task/InitializeStateCreateWithRemote$doWork$2.java, line(s) 44,52,55 com/unity3d/services/core/domain/task/InitializeStateError$doWork$2.java, line(s) 43 com/unity3d/services/core/domain/task/InitializeStateLoadCache$doWork$2.java, line(s) 47,61 com/unity3d/services/core/domain/task/InitializeStateLoadCache.java, line(s) 140 com/unity3d/services/core/domain/task/InitializeStateNetworkError$doWork$2.java, line(s) 46 com/unity3d/services/core/domain/task/InitializeStateNetworkError.java, line(s) 94,111 com/unity3d/services/core/log/DeviceLog.java, line(s) 68,197,204 com/unity3d/services/core/misc/JsonFlattener.java, line(s) 43 com/unity3d/services/core/misc/JsonStorage.java, line(s) 156,26,32,51,72,84,96,165,171 com/unity3d/services/core/misc/JsonStorageAggregator.java, line(s) 34 com/unity3d/services/core/misc/Utilities.java, line(s) 126,143,181 com/unity3d/services/core/misc/ViewUtilities.java, line(s) 25,33 com/unity3d/services/core/preferences/AndroidPreferences.java, line(s) 14,26,38,50,62 com/unity3d/services/core/properties/ClientProperties.java, line(s) 39,70,82,84 com/unity3d/services/core/properties/SdkProperties.java, line(s) 230,232,93 com/unity3d/services/core/reflection/GenericBridge.java, line(s) 32,47,56,62,70,76,84,91 com/unity3d/services/core/request/WebRequest.java, line(s) 68,160,163 com/unity3d/services/core/request/WebRequestRunnable.java, line(s) 91,76,95 com/unity3d/services/core/request/WebRequestThread.java, line(s) 63,115,130 com/unity3d/services/core/request/metrics/MetricCommonTags.java, line(s) 72 com/unity3d/services/core/request/metrics/MetricSender$sendMetrics$$inlined$CoroutineExceptionHandler$1.java, line(s) 19 com/unity3d/services/core/request/metrics/MetricSender$sendMetrics$1.java, line(s) 80,82 com/unity3d/services/core/request/metrics/MetricSender.java, line(s) 74,87,95 com/unity3d/services/core/request/metrics/MetricSenderWithBatch.java, line(s) 44 com/unity3d/services/core/request/metrics/SDKMetrics.java, line(s) 37,42,52,85,96 com/unity3d/services/core/sensorinfo/SensorInfoListener.java, line(s) 28 com/unity3d/services/core/timer/BaseTimer.java, line(s) 77 com/unity3d/services/core/webview/WebView.java, line(s) 95 com/unity3d/services/core/webview/WebViewApp.java, line(s) 61,109,165,210,254,304,68,72,75,92,144,246,276,317,352,368 com/unity3d/services/core/webview/WebViewUrlBuilder.java, line(s) 29 com/unity3d/services/core/webview/bridge/Invocation.java, line(s) 65 com/unity3d/services/core/webview/bridge/NativeCallback.java, line(s) 39 com/unity3d/services/core/webview/bridge/WebViewBridge.java, line(s) 91 com/unity3d/services/core/webview/bridge/WebViewBridgeInterface.java, line(s) 54,61 com/unity3d/services/core/webview/bridge/WebViewCallback.java, line(s) 72 com/unity3d/services/store/core/StoreLifecycleListener.java, line(s) 43 com/unity3d/services/store/gpbl/bridges/CommonJsonResponseBridge.java, line(s) 33 com/unity3d/services/store/gpbl/bridges/PurchaseBridge.java, line(s) 37 com/utils/Getlink/Provider/SmashyWebview.java, line(s) 73 com/utils/Getlink/Resolver/premium/services/Realdebrid.java, line(s) 59 com/utils/PrefUtils.java, line(s) 32 com/utils/Utils.java, line(s) 782,785,788,304,306 com/utils/subtitle/subtitleView/CaptionsView.java, line(s) 133,143,116 com/vincentbrison/openlibraries/android/dualcache/Logger.java, line(s) 20 com/vungle/warren/AdActivity.java, line(s) 141,143,218,237,253 com/vungle/warren/AdEventListener.java, line(s) 140,96,108 com/vungle/warren/AdLoader.java, line(s) 353,443,633,678,700,782,940,1148,1268,114,316,422,430,615,956,684,1182,1194,677,1010 com/vungle/warren/AdvertisementPresentationFactory.java, line(s) 104,109,120,128,132,196,220,285,310,318,347,395,400,411,418 com/vungle/warren/Banners.java, line(s) 54,59,63,68,79,120,134 com/vungle/warren/CacheBustManager.java, line(s) 28 com/vungle/warren/NativeAd.java, line(s) 198,193,398 com/vungle/warren/NativeAdLayout.java, line(s) 73,90,107,113,120,130,138,157,163,171,222 com/vungle/warren/Plugin.java, line(s) 11,16,22 com/vungle/warren/SessionTracker.java, line(s) 120,124,102,229 com/vungle/warren/Vungle.java, line(s) 369,402,844,937,944,169,200,343,410,465,479,533,543,553,576,656,709,716,737,756,764,770,779,786,793,797,802,812,833,876,921,1026,1040 com/vungle/warren/VungleApiClient.java, line(s) 237,439,571,363,390,396,441,445,458,765,474,500,503,509 com/vungle/warren/VungleBanner.java, line(s) 38,46,63,115,122,133,153,174,176 com/vungle/warren/VungleJobRunner.java, line(s) 120 com/vungle/warren/VungleLogger.java, line(s) 43,76,85,108,51,115,122,129,136 com/vungle/warren/analytics/VungleAnalytics.java, line(s) 82,87,44,45,48,50,53,99 com/vungle/warren/downloader/AssetDownloader.java, line(s) 211,290,295,363,424,442,524,546,601,604,608,612,623,630,651,656,678,694,704,714,715,717,723,734,739,784,786,789,791,860,954,975,751,841,864,911,942 com/vungle/warren/downloader/CleverCache.java, line(s) 61,111,121,289,299,303,309,324,330,345,364,368,381 com/vungle/warren/log/BaseFilePersistor.java, line(s) 92,106 com/vungle/warren/log/LogManager.java, line(s) 66,71,79,84,97 com/vungle/warren/log/LogPersister.java, line(s) 100,86,116,44,77,104 com/vungle/warren/log/LogSender.java, line(s) 67,101 com/vungle/warren/model/Advertisement.java, line(s) 296 com/vungle/warren/network/OkHttpCall.java, line(s) 127,143 com/vungle/warren/persistence/CacheManager.java, line(s) 208 com/vungle/warren/persistence/FutureResult.java, line(s) 31,55,27,51,58 com/vungle/warren/persistence/GraphicDesigner.java, line(s) 32,86 com/vungle/warren/persistence/Repository.java, line(s) 89,97,103,220,436,442,487,497,992,995,261,300,512,879 com/vungle/warren/tasks/CacheBustJob.java, line(s) 45,98,117,127,192,61,133,145,159,186,195,198,157 com/vungle/warren/tasks/CleanupJob.java, line(s) 44,73,82,84,101,92,63 com/vungle/warren/tasks/JobInfo.java, line(s) 51 com/vungle/warren/tasks/SendReportsJob.java, line(s) 43,52 com/vungle/warren/tasks/runnable/JobRunnable.java, line(s) 39,48,50,56,41,60,62 com/vungle/warren/ui/JavascriptBridge.java, line(s) 23 com/vungle/warren/ui/presenter/LocalAdPresenter.java, line(s) 604,120 com/vungle/warren/ui/presenter/MRAIDAdPresenter.java, line(s) 775,473,550,614 com/vungle/warren/ui/presenter/NativeAdPresenter.java, line(s) 169,207,254,269,279,301,327 com/vungle/warren/ui/view/BaseAdView.java, line(s) 105,109 com/vungle/warren/ui/view/FullAdWidget.java, line(s) 460 com/vungle/warren/ui/view/LocalAdView.java, line(s) 166,110,95 com/vungle/warren/ui/view/NativeAdView.java, line(s) 118 com/vungle/warren/ui/view/VungleBannerView.java, line(s) 241,254,258 com/vungle/warren/ui/view/VungleWebClient.java, line(s) 147,237,277,180,181,190,191,239,294,295,68,198 com/vungle/warren/utility/ActivityManager.java, line(s) 103 com/vungle/warren/utility/CookieUtil.java, line(s) 28 com/vungle/warren/utility/ExternalRouter.java, line(s) 39,24,38 com/vungle/warren/utility/FileUtility.java, line(s) 73,76,169,180,188,300 com/vungle/warren/utility/ImageLoader.java, line(s) 37,39,56 com/vungle/warren/utility/ImpressionTracker.java, line(s) 101,106 com/vungle/warren/utility/NetworkProvider.java, line(s) 142,120 com/vungle/warren/utility/UnzipUtility.java, line(s) 81 com/vungle/warren/utility/VungleUrlUtility.java, line(s) 14 com/xuhao/didi/core/iocore/ReaderImpl.java, line(s) 38,39,40,78,79,82,83 com/xuhao/didi/core/iocore/WriterImpl.java, line(s) 79,80,81 com/xuhao/didi/core/utils/SLog.java, line(s) 8,14 com/xuhao/didi/socket/client/impl/client/ConnectionManagerImpl.java, line(s) 50,129,158,175,58,61,66,98,102,113,189,203,208,211,216,238,297,330,332 com/xuhao/didi/socket/client/impl/client/ManagerHolder.java, line(s) 77 com/xuhao/didi/socket/client/impl/client/action/ActionDispatcher.java, line(s) 191 com/xuhao/didi/socket/client/impl/client/iothreads/DuplexReadThread.java, line(s) 31 com/xuhao/didi/socket/client/impl/client/iothreads/DuplexWriteThread.java, line(s) 31 com/xuhao/didi/socket/client/impl/client/iothreads/IOThreadManager.java, line(s) 132,138 com/xuhao/didi/socket/client/impl/client/iothreads/SimplexIOThread.java, line(s) 37 com/xuhao/didi/socket/client/sdk/client/connection/DefaultReconnectManager.java, line(s) 37,41,44,58,132 com/xuhao/didi/socket/common/interfaces/basic/AbsLoopThread.java, line(s) 63,68,89 com/xuhao/didi/socket/common/interfaces/utils/SPIUtils.java, line(s) 10,19 com/xuhao/didi/socket/server/impl/ServerManagerImpl.java, line(s) 79,86 com/xuhao/didi/socket/server/impl/iocore/ClientReadThread.java, line(s) 31 com/xuhao/didi/socket/server/impl/iocore/ClientWriteThread.java, line(s) 31 com/yoku/house/ads/helper/HouseAdsHelper.java, line(s) 26 com/yoku/house/ads/helper/JsonPullerTask.java, line(s) 27 com/yoku/house/ads/helper/cacheImages/PicassoHelper.java, line(s) 29 it/gmariotti/changelibs/library/parser/XmlParser.java, line(s) 74,86,89 it/gmariotti/changelibs/library/view/ChangeLogListView.java, line(s) 47,92 it/gmariotti/changelibs/library/view/ChangeLogRecyclerView.java, line(s) 46,85 org/joda/time/tz/DateTimeZoneBuilder.java, line(s) 334,335,360 org/joda/time/tz/ZoneInfoCompiler.java, line(s) 269,270,271,272,273,282,298,375,394,407,419,422,427,493 org/threeten/bp/zone/TzdbZoneRulesCompiler.java, line(s) 257,271,275,283,284,291,303,307,314,351,358,359,360,361,362,363,364,365,366,367,368,369,370,371,418,717,739,752,763,771,778,829 us/shandian/giga/get/DownloadManagerImpl.java, line(s) 197,265,267,207 us/shandian/giga/service/DownloadManagerService.java, line(s) 169 us/shandian/giga/ui/adapter/MissionAdapter.java, line(s) 285,351
安全提示信息 此应用程序将数据复制到剪贴板。敏感数据不应复制到剪贴板,因为其他应用程序可以访问它
此应用程序将数据复制到剪贴板。敏感数据不应复制到剪贴板,因为其他应用程序可以访问它 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04b-Mobile-App-Security-Testing.md#clipboard Files: com/movie/ui/fragment/MovieFragment.java, line(s) 8,502 com/utils/Utils.java, line(s) 7,1117 us/shandian/giga/util/Utility.java, line(s) 4,75
已通过安全项 此应用程序使用SSL Pinning 来检测或防止安全通信通道中的MITM攻击
此应用程序使用SSL Pinning 来检测或防止安全通信通道中的MITM攻击 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05g-Testing-Network-Communication.md#testing-custom-certificate-stores-and-certificate-pinning-mstg-network-4 Files: com/movie/data/api/ApiModule.java, line(s) 76,76 com/movie/data/api/alldebrid/AllDebridModule.java, line(s) 43,43 com/movie/data/api/imdb/IMDBModule.java, line(s) 59,59 com/movie/data/api/premiumize/PremiumizeModule.java, line(s) 38,38 com/movie/data/api/realdebrid/RealDebridModule.java, line(s) 88,88 com/movie/data/api/tmdb/TMDBModule.java, line(s) 114,114 com/movie/data/api/tvmaze/TVMazeModule.java, line(s) 43,43 com/original/tase/helper/http/TLSSocketFactory.java, line(s) 40,26,39,38,38 com/startapp/networkTest/net/WebApiClient.java, line(s) 119,70 com/utils/subtitle/services/openSubtitle/OpenSubtitleModule.java, line(s) 23,23 com/uwetrottmann/thetvdb/TheTvdb.java, line(s) 66,66 com/uwetrottmann/trakt5/TraktV2.java, line(s) 221,221 com/xuhao/didi/socket/client/impl/client/ConnectionManagerImpl.java, line(s) 163,169 com/yoku/house/ads/helper/cacheImages/PicassoHelper.java, line(s) 23,23 org/jsoup/helper/HttpConnection.java, line(s) 554,463
已通过安全项 此应用程序可能具有Root检测功能
此应用程序可能具有Root检测功能 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05j-Testing-Resiliency-Against-Reverse-Engineering.md#testing-root-detection-mstg-resilience-1 Files: com/startapp/p.java, line(s) 379,604,604,604,604,604,604 com/startapp/z0.java, line(s) 259,259,259,259,259,259
重点安全关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (www.subtitlecat.com) 通信。
{'ip': '221.228.32.13', 'country_short': 'CN', 'country_long': '中国', 'region': '江苏', 'city': '无锡', 'latitude': '31.569349', 'longitude': '120.288788'}
综合安全基线评分总结
CinemaHD - Stable v3.4.1
Android APK
43
综合安全评分
中风险