0

高危漏洞

2

中危漏洞

1

低危漏洞

4

警告

文件名 wm-getngo-android.apk
上传者 stuhkg
文件大小 41.935586929321MB
MD5 ed4ac0c737ffbdd3ba7e037e365d4760
包名 com.wm.getngo
Main Activity com.wm.getngo.ui.activity.AppNavigateActivity
Min SDK 21
Target SDK 26

权限列表

# 名称 说明 提示
0 android.permission.CALL_PHONE 允许应用程序在您不介入的情况下拨打电话。恶意应用程序可借此在您的话费单上产生意外通话费。请注意,此权限不允许应用程序拨打紧急呼救电话。 警告
1 android.permission.ACCESS_COARSE_LOCATION 访问大概的位置源(例如蜂窝网络数据库)以确定手机的大概位置(如果可以)。恶意应用程序可借此确定您所处的大概位置。 注意
2 android.permission.ACCESS_FINE_LOCATION 访问精准的位置源,例如手机上的全球定位系统(如果有)。恶意应用程序可能会借此确定您所处的位置,并可能消耗额外的电池电量。 注意
3 android.permission.ACCESS_LOCATION_EXTRA_COMMANDS 访问额外的位置信息提供程序命令。恶意应用程序可借此干扰GPS或其他位置源的正常工作。 注意
4 android.permission.BLUETOOTH 允许应用程序查看本地蓝牙手机的配置,以及建立或接受与配对设备的连接。 注意
5 android.permission.GET_TASKS 允许应用程序检索有关当前和最近运行的任务的信息。恶意应用程序可借此发现有关其他应用程序的保密信息。 注意
6 android.permission.READ_PHONE_STATE 允许应用程序访问设备的手机功能。有此权限的应用程序可确定此手机的号码和序列号,是否正在通话,以及对方的号码等。 注意
7 android.permission.READ_PHONE_STATE 允许应用程序访问设备的手机功能。有此权限的应用程序可确定此手机的号码和序列号,是否正在通话,以及对方的号码等。 注意
8 android.permission.RECORD_AUDIO 允许应用程序访问录音路径。 注意
9 android.permission.SYSTEM_ALERT_WINDOW 允许应用程序显示系统警报窗口。恶意应用程序可借此掌控整个手机屏幕。 注意
10 android.permission.WRITE_SETTINGS 允许应用程序修改系统设置方面的数据。恶意应用程序可借此破坏您的系统配置。 注意
11 android.permission.ACCESS_NETWORK_STATE 允许应用程序查看所有网络的状态。 提示
12 android.permission.ACCESS_WIFI_STATE 允许应用程序查看有关WLAN状态的信息。 提示
13 android.permission.BLUETOOTH_ADMIN 允许应用程序配置本地蓝牙手机,以及发现远程设备并与其配对。 提示
14 android.permission.CAMERA 允许应用程序使用相机拍照,这样应用程序可随时收集进入相机镜头的图像。 提示
15 android.permission.CHANGE_NETWORK_STATE 允许应用程序更改网络连接的状态。 提示
16 android.permission.CHANGE_WIFI_STATE 允许应用程序连接到WLAN接入点以及与WLAN接入点断开连接,并对配置的WLAN网络进行更改。 提示
17 android.permission.INTERNET 允许程序访问网络. 提示
18 android.permission.MOUNT_UNMOUNT_FILESYSTEMS 允许应用程序装载和卸载可移动存储器的文件系统。 提示
19 android.permission.VIBRATE 允许应用程序控制振动器。 提示
20 android.permission.WAKE_LOCK 允许应用程序防止手机进入休眠状态。 提示
21 android.permission.WRITE_EXTERNAL_STORAGE 允许应用程序写入SD卡。 提示

四大组件

组件名称

com.wm.getngo.ui.activity.AppNavigateActivity
com.wm.getngo.ui.activity.AppGuideActivity
com.wm.getngo.ui.activity.AppWebViewActivity
com.wm.getngo.ui.activity.MainActivity
com.wm.getngo.ui.activity.AccountActivity
com.wm.getngo.ui.activity.AccountPeccancyListActivity
com.wm.getngo.ui.activity.AccountPeccancyInfoActivity
com.wm.getngo.ui.activity.OrderListActivity
com.wm.getngo.ui.activity.OrderAuthInfoActivity
com.wm.share.ui.activity.OrderShareInfoActivity
com.wm.getngo.ui.activity.OrderSureInfoActivity
com.wm.share.ui.activity.ConfirmFinishOrderActivity
com.wm.share.ui.activity.PayConfirmActivity
com.wm.share.ui.activity.PayResultActivity
com.wm.getngo.ui.activity.AuthSelectPointActivity
com.wm.getngo.ui.activity.AuthSelectCarActivity
com.wm.getngo.ui.activity.OrganizationListActivity
com.wm.getngo.ui.activity.OrganizationInfoActivity
com.wm.getngo.ui.activity.AccountBillActivity
com.wm.getngo.ui.activity.AccountRechargeActivity
com.wm.getngo.ui.activity.AccountDepositActivity
com.wm.getngo.ui.activity.AccountReturnDepositActivity
com.wm.getngo.ui.activity.AccountDepositStatusActivity
com.wm.getngo.ui.activity.AccountPeccancyUpLoadActivity
com.wm.getngo.ui.activity.AccountAuthActivity
com.wm.getngo.ui.activity.AccountAuthFailActivity
com.wm.getngo.ui.activity.AccountAuthStatusActivity
com.wm.getngo.ui.activity.UserLoginActivity
com.wm.getngo.ui.activity.UserForgetPasswordActivity
com.wm.getngo.ui.activity.UserSetPasswordActivity
com.wm.getngo.ui.activity.OrderCancelActivity
com.wm.getngo.ui.activity.CouponListActivity
com.wm.getngo.ui.activity.CardDetailActivity
com.wm.getngo.ui.activity.InvoiceSelectTypeActivity
com.wm.getngo.ui.activity.InvoiceListActivity
com.wm.getngo.ui.activity.InvoiceInfoActivity
com.wm.getngo.ui.activity.InvoiceSuccessActivity
com.wm.getngo.ui.activity.AccountInfoActivity
com.wm.getngo.ui.activity.AccountInfoUpdateActivity
com.wm.getngo.ui.activity.FeedbackActivity
com.wm.getngo.ui.activity.FeedbackRecordActivity
com.wm.getngo.ui.activity.ImagePreviewActivity
com.wm.getngo.ui.activity.VehicleInfoActivity
com.wm.evcos.ui.activity.QrCodeActivity
com.wm.evcos.ui.activity.StartChargeActivity
com.wm.evcos.ui.activity.ChargingActivity
com.wm.evcos.ui.activity.EvcosStationListActivity
com.wm.evcos.ui.activity.FeedbackActivity
com.wm.evcos.ui.activity.InputDeviceIdActivity
com.wm.evcos.ui.activity.EvcosOrderDetailActivity
com.wm.evcos.ui.activity.EvcosPayConfirmActivity
com.wm.evcos.ui.activity.EvcosPayResultActivity
com.wm.evcos.ui.activity.EvcosSearchActivity
com.wm.evcos.ui.activity.EvcosRatingListActivity
com.wm.evcos.ui.activity.RoutePointSelectActivity
com.wm.evcos.ui.activity.RoutePlanningActivity
com.wm.evcos.ui.activity.EvcosRecentChargingInformationActivity
com.wm.getngo.ui.activity.CouponExchangeActivity
com.wm.evcos.ui.activity.EvcosRatingActivity
com.wm.evcos.ui.activity.EvcosStationDetailActivity
com.wm.travel.ui.activity.TravelSelectPointActivity
com.wm.travel.ui.activity.TravelSelectCarActivity
com.wm.travel.ui.activity.TravelSelectDoorAddress
com.wm.travel.ui.activity.TravelMapPointActivity
com.wm.travel.ui.activity.TravelOrderSureInfoActivity
com.wm.travel.ui.activity.TravelOrderInfoActivity
com.wm.travel.ui.activity.ImmediateBookingCarActivity
com.wm.travel.ui.activity.ImmediateOrderSureInfoActivity
com.wm.travel.ui.activity.ImmediateOrderInfoActivity
com.wm.travel.ui.activity.ReturnCarHandlerActivity
com.wm.travel.ui.activity.ReserveSuccessActivity
com.wm.travel.ui.activity.CarOverallActivity
com.wm.travel.ui.activity.CarPartActivity
com.wm.travel.ui.activity.CarPhotoPreviewActivity
com.wm.travel.ui.activity.ImmediateSelectReturnCarPointActivity
com.wm.travel.ui.activity.ImmediateTravelEndActivity
com.wm.getngo.ui.activity.MyCouponActivity
com.wm.getngo.ui.activity.AllCardActivity
com.wm.getngo.ui.activity.UseCouponActivity
com.wm.getngo.ui.activity.ConsumingRecordActivity
com.wm.drive.activity.DriveOrderSureActivity
com.wm.drive.activity.DriveOrderInfoActivity
com.wm.drive.activity.DriveOrderCancelActivity
com.wm.drive.activity.DriveSelectPointActivity
com.wm.drive.activity.DriveSelectCarActivity
com.wm.getngo.ui.activity.AccountSelectCarActivity
com.wm.netcar.ui.activity.AlarmActivity
com.wm.netcar.ui.activity.AudioRecordAuthActivity
com.wm.netcar.ui.activity.EmergencyContactActivity
com.wm.netcar.ui.activity.ManageContactsActivity
com.wm.netcar.ui.activity.PhoneNumberProtectionActivity
com.wm.netcar.ui.activity.SecurityCenterActivity
com.wm.netcar.ui.activity.VerifiedActivity
com.wm.netcar.ui.activity.NetcarOrderActivity
com.wm.netcar.ui.activity.NetcarSearchActivity
com.wm.getngo.wxapi.WXPayEntryActivity
com.wm.getngo.wxapi.WXEntryActivity
com.wm.netcar.ui.activity.NetcarTripCancelActivity
com.wm.netcar.ui.activity.ValuationRulesActivity
cn.jpush.android.ui.PopWinActivity
cn.jpush.android.ui.PushActivity
cn.jpush.android.service.JNotifyActivity
com.huawei.hms.activity.BridgeActivity
com.vivo.push.sdk.LinkProxyClientActivity
cn.udesk.activity.UdeskHelperActivity
cn.udesk.activity.UdeskHelperArticleActivity
cn.udesk.activity.UdeskRobotActivity
cn.udesk.activity.UdeskFormActivity
cn.udesk.activity.UdeskChatActivity
cn.udesk.activity.UdeskZoomImageActivty
cn.udesk.activity.UdeskOptionsAgentGroupActivity
cn.udesk.activity.UdeskWebViewUrlAcivity
cn.udesk.photoselect.PhotoSelectorActivity
cn.udesk.photoselect.PreviewActivity
cn.udesk.photoselect.PictureVideoPlayActivity
cn.udesk.camera.UdeskCameraActivity
com.luck.picture.lib.PictureSelectorActivity
com.luck.picture.lib.PicturePreviewActivity
com.luck.picture.lib.PictureVideoPlayActivity
com.luck.picture.lib.PictureExternalPreviewActivity
com.yalantis.ucrop.UCropActivity
com.yalantis.ucrop.PictureMultiCuttingActivity
com.luck.picture.lib.PicturePlayAudioActivity
com.azhon.appupdate.activity.PermissionActivity
com.alipay.sdk.app.H5PayActivity
com.alipay.sdk.auth.AuthActivity
com.umeng.socialize.media.WBShareCallBackActivity
com.sina.weibo.sdk.web.WeiboSdkWebActivity
com.sina.weibo.sdk.share.WbShareTransActivity
com.yanzhenjie.permission.bridge.BridgeActivity

com.wm.getngo.service.JPushService
com.wm.travel.ui.service.CarPhotoUploadService
com.wmsmart.control.blecontrol.bleControl.BTCService
cn.jpush.android.service.PushService
cn.jpush.android.service.DaemonService
com.xiaomi.push.service.XMJobService
com.xiaomi.push.service.XMPushService
com.xiaomi.mipush.sdk.PushMessageHandler
com.xiaomi.mipush.sdk.MessageHandleService
com.vivo.push.sdk.service.CommandClientService
cn.jpush.android.service.PluginOppoPushService
com.baidu.location.f
com.azhon.appupdate.service.DownloadService

com.wm.getngo.receiver.JPushReceiver
com.wm.getngo.receiver.JPushNewReceiver
cn.jpush.android.service.PushReceiver
cn.jpush.android.service.AlarmReceiver
com.xiaomi.push.service.receivers.NetworkStatusReceiver
com.xiaomi.push.service.receivers.PingReceiver
cn.jpush.android.service.PluginXiaomiPlatformsReceiver
cn.jpush.android.service.PluginHuaweiPlatformsReceiver
cn.jpush.android.service.PluginVivoMessageReceiver
cn.jpush.android.service.PluginMeizuPlatformsReceiver
com.app.wxpay.AppRegister

android.support.v4.content.FileProvider
com.wm.getngo.util.SelectPhotoFileProvider
cn.jpush.android.service.DataProvider
cn.jpush.android.service.DownloadProvider
com.huawei.hms.update.provider.UpdateProvider
cn.udesk.provider.UdeskFileProvider
com.luck.picture.lib.PictureFileProvider
com.yanzhenjie.permission.FileProvider

第三方库

# 库名 介绍

静态扫描发现风险点

风险等级 风险名称

中危

检测到debug模式被打开。如果该项被打开,app存在被恶意程序调试的风险,可能导致泄露敏感信息等问题,建议关闭debug模式。

中危

该app需要移除大部分日志打印代码。
经扫描该包仍存在大量打日志代码,共发现13处打日志代码.(此处扫描的日志打印代码,是指调用android.util.Log.* 打印的.)
详情如下:

位置: classes.dex
com.ir.app.android.a.c;->b(Ljava/lang/String;)[B==>android.util.Log;->d(Ljava/lang/String; Ljava/lang/String;)I
com.ir.app.a.b;->c(Ljava/lang/String;)[B==>android.util.Log;->w(Ljava/lang/String; Ljava/lang/String;)I
com.ir.app.android.ApplicationDalvikVM;->setupLoaderEnv(Ljava/lang/String; Ljava/lang/String;)V==>android.util.Log;->d(Ljava/lang/String; Ljava/lang/String;)I
com.ir.app.android.a;->(Ljava/lang/Object;)V==>android.util.Log;->d(Ljava/lang/String; Ljava/lang/String;)I
com.ir.app.android.a;->f()V==>android.util.Log;->d(Ljava/lang/String; Ljava/lang/String;)I
com.ir.app.android.a.a;->b(Ljava/lang/String;)[B==>android.util.Log;->d(Ljava/lang/String; Ljava/lang/String;)I
com.ir.app.android.a.c;->c(Ljava/lang/String;)[B==>android.util.Log;->d(Ljava/lang/String; Ljava/lang/String;)I
com.ir.app.android.a.c;->c(Ljava/lang/String;)[B==>android.util.Log;->w(Ljava/lang/String; Ljava/lang/String;)I
com.ir.app.a.b;->c(Ljava/lang/String;)[B==>android.util.Log;->d(Ljava/lang/String; Ljava/lang/String;)I
com.ir.app.a.b;->a(Ljava/lang/String; Ljava/lang/StringBuffer;)Ljava/io/InputStream;==>android.util.Log;->d(Ljava/lang/String; Ljava/lang/String;)I
com.ir.app.android.a.c;->a(Ljava/lang/String;)[B==>android.util.Log;->d(Ljava/lang/String; Ljava/lang/String;)I
com.ir.app.android.a.c;->a(Ljava/lang/String; Ljava/lang/StringBuffer;)Ljava/io/InputStream;==>android.util.Log;->d(Ljava/lang/String; Ljava/lang/String;)I
com.ir.app.android.a.a;->a(Ljava/lang/String;)[B==>android.util.Log;->d(Ljava/lang/String; Ljava/lang/String;)I

低危

非debug包,需要通过打包平台proguard脚本,移除大部分系统输出代码。
经扫描该包仍存在大量系统输出代码,共发现2处系统输出代码.(此处扫描的系统输出代码,是指调用System.out.print*输出的,本应在打包平台移除的系统输出代码.)
各个bundle系统输出代码详情如下:

位置: classes.dex
com.ir.app.android.a.c;
com.ir.app.a.b;

警告

检测到101个导出的组件接收其他app的消息,这些组件会被其他app引用并导致dos攻击。

activity com.wm.getngo.ui.activity.AppWebViewActivity
activity com.wm.getngo.ui.activity.MainActivity
activity com.wm.getngo.ui.activity.AccountActivity
activity com.wm.getngo.ui.activity.AccountPeccancyListActivity
activity com.wm.getngo.ui.activity.AccountPeccancyInfoActivity
activity com.wm.getngo.ui.activity.OrderListActivity
activity com.wm.getngo.ui.activity.OrderAuthInfoActivity
activity com.wm.share.ui.activity.OrderShareInfoActivity
activity com.wm.getngo.ui.activity.OrderSureInfoActivity
activity com.wm.share.ui.activity.ConfirmFinishOrderActivity
activity com.wm.share.ui.activity.PayConfirmActivity
activity com.wm.share.ui.activity.PayResultActivity
activity com.wm.getngo.ui.activity.AuthSelectPointActivity
activity com.wm.getngo.ui.activity.AuthSelectCarActivity
activity com.wm.getngo.ui.activity.OrganizationListActivity
activity com.wm.getngo.ui.activity.OrganizationInfoActivity
activity com.wm.getngo.ui.activity.AccountBillActivity
activity com.wm.getngo.ui.activity.AccountRechargeActivity
activity com.wm.getngo.ui.activity.AccountDepositActivity
activity com.wm.getngo.ui.activity.AccountReturnDepositActivity
activity com.wm.getngo.ui.activity.AccountDepositStatusActivity
activity com.wm.getngo.ui.activity.AccountPeccancyUpLoadActivity
activity com.wm.getngo.ui.activity.AccountAuthActivity
activity com.wm.getngo.ui.activity.AccountAuthFailActivity
activity com.wm.getngo.ui.activity.AccountAuthStatusActivity
activity com.wm.getngo.ui.activity.UserLoginActivity
activity com.wm.getngo.ui.activity.OrderCancelActivity
activity com.wm.getngo.ui.activity.CouponListActivity
activity com.wm.getngo.ui.activity.CardDetailActivity
activity com.wm.getngo.ui.activity.InvoiceSelectTypeActivity
activity com.wm.getngo.ui.activity.InvoiceListActivity
activity com.wm.getngo.ui.activity.InvoiceInfoActivity
activity com.wm.getngo.ui.activity.InvoiceSuccessActivity
activity com.wm.getngo.ui.activity.AccountInfoActivity
activity com.wm.getngo.ui.activity.AccountInfoUpdateActivity
activity com.wm.getngo.ui.activity.FeedbackActivity
activity com.wm.getngo.ui.activity.ImagePreviewActivity
activity com.wm.getngo.ui.activity.VehicleInfoActivity
activity com.wm.evcos.ui.activity.QrCodeActivity
activity com.wm.evcos.ui.activity.StartChargeActivity
activity com.wm.evcos.ui.activity.ChargingActivity
activity com.wm.evcos.ui.activity.EvcosStationListActivity
activity com.wm.evcos.ui.activity.FeedbackActivity
activity com.wm.evcos.ui.activity.InputDeviceIdActivity
activity com.wm.evcos.ui.activity.EvcosOrderDetailActivity
activity com.wm.evcos.ui.activity.EvcosPayConfirmActivity
activity com.wm.evcos.ui.activity.EvcosPayResultActivity
activity com.wm.evcos.ui.activity.EvcosSearchActivity
activity com.wm.evcos.ui.activity.EvcosRatingListActivity
activity com.wm.evcos.ui.activity.RoutePointSelectActivity
activity com.wm.evcos.ui.activity.RoutePlanningActivity
activity com.wm.getngo.ui.activity.CouponExchangeActivity
activity com.wm.evcos.ui.activity.EvcosRatingActivity
activity com.wm.evcos.ui.activity.EvcosStationDetailActivity
activity com.wm.travel.ui.activity.TravelSelectPointActivity
activity com.wm.travel.ui.activity.TravelSelectCarActivity
activity com.wm.travel.ui.activity.TravelSelectDoorAddress
activity com.wm.travel.ui.activity.TravelOrderSureInfoActivity
activity com.wm.travel.ui.activity.TravelOrderInfoActivity
activity com.wm.travel.ui.activity.ReturnCarHandlerActivity
activity com.wm.travel.ui.activity.ReserveSuccessActivity
activity com.wm.travel.ui.activity.CarOverallActivity
activity com.wm.travel.ui.activity.CarPartActivity
activity com.wm.travel.ui.activity.CarPhotoPreviewActivity
activity com.wm.getngo.ui.activity.MyCouponActivity
activity com.wm.getngo.ui.activity.AllCardActivity
activity com.wm.getngo.ui.activity.UseCouponActivity
activity com.wm.getngo.ui.activity.ConsumingRecordActivity
activity com.wm.drive.activity.DriveOrderSureActivity
activity com.wm.drive.activity.DriveOrderInfoActivity
activity com.wm.drive.activity.DriveOrderCancelActivity
activity com.wm.drive.activity.DriveSelectPointActivity
activity com.wm.drive.activity.DriveSelectCarActivity
activity com.wm.getngo.ui.activity.AccountSelectCarActivity
activity com.wm.netcar.ui.activity.AlarmActivity
activity com.wm.netcar.ui.activity.AudioRecordAuthActivity
activity com.wm.netcar.ui.activity.EmergencyContactActivity
activity com.wm.netcar.ui.activity.ManageContactsActivity
activity com.wm.netcar.ui.activity.PhoneNumberProtectionActivity
activity com.wm.netcar.ui.activity.SecurityCenterActivity
activity com.wm.netcar.ui.activity.VerifiedActivity
activity com.wm.netcar.ui.activity.NetcarOrderActivity
activity com.wm.netcar.ui.activity.NetcarSearchActivity
activity com.wm.getngo.wxapi.WXPayEntryActivity
activity com.wm.getngo.wxapi.WXEntryActivity
activity com.wm.netcar.ui.activity.NetcarTripCancelActivity
activity com.wm.netcar.ui.activity.ValuationRulesActivity
activity cn.jpush.android.ui.PopWinActivity
activity cn.jpush.android.ui.PushActivity
activity cn.jpush.android.service.JNotifyActivity
activity com.sina.weibo.sdk.share.WbShareTransActivity
service cn.jpush.android.service.DaemonService
service com.xiaomi.mipush.sdk.PushMessageHandler
service com.vivo.push.sdk.service.CommandClientService
service cn.jpush.android.service.PluginOppoPushService
receiver com.wm.getngo.receiver.JPushReceiver
receiver com.xiaomi.push.service.receivers.NetworkStatusReceiver
receiver cn.jpush.android.service.PluginXiaomiPlatformsReceiver
receiver cn.jpush.android.service.PluginHuaweiPlatformsReceiver
receiver cn.jpush.android.service.PluginVivoMessageReceiver
receiver cn.jpush.android.service.PluginMeizuPlatformsReceiver

建议:
(1)最小化组件暴露。对不会参与跨应用调用的组件建议显示添加android:exported="false"属性。
(2)设置组件访问权限。对provider设置权限,同时将权限的protectionLevel设置为"signature"或"signatureOrSystem"。
(3)组件传输数据验证。对组件之间,特别是跨应用的组件之间的数据传入与返回做验证和增加异常处理,防止恶意调试数据传入,更要防止敏感数据返回。

参考案例:
http://www.wooyun.org/bugs/wooyun-2010-0169746
http://www.wooyun.org/bugs/wooyun-2010-0104965

参考资料:
http://jaq.alibaba.com/blog.htm?spm=0.0.0.0.Wz4OeC&id=55
《Android安全技术解密与防范》

警告

检测到2个导出的隐式Service组件。
service cn.jpush.android.service.DaemonService
service cn.jpush.android.service.PluginOppoPushService

建议:为了确保应用的安全性,启动Service时,请始终使用显式Intent,且不要为服务声明Intent过滤器。使用隐式Intent启动服务存在安全隐患,因为您无法确定哪些服务将响应Intent,且用户无法看到哪些服务已启动。从Android 5.0(API 级别 21)开始,如果使用隐式 Intent 调用 bindService(),系统会抛出异常。

参考资料:
https://developer.android.com/guide/components/intents-filters.html#Types

警告

检测86处組件設置了android.intent.category.BROWSABLE属性。
com.wm.getngo.ui.activity.AppNavigateActivity
com.wm.getngo.ui.activity.AppWebViewActivity
com.wm.getngo.ui.activity.MainActivity
com.wm.getngo.ui.activity.AccountActivity
com.wm.getngo.ui.activity.AccountPeccancyListActivity
com.wm.getngo.ui.activity.AccountPeccancyInfoActivity
com.wm.getngo.ui.activity.OrderListActivity
com.wm.getngo.ui.activity.OrderAuthInfoActivity
com.wm.share.ui.activity.OrderShareInfoActivity
com.wm.getngo.ui.activity.OrderSureInfoActivity
com.wm.share.ui.activity.ConfirmFinishOrderActivity
com.wm.share.ui.activity.PayConfirmActivity
com.wm.share.ui.activity.PayResultActivity
com.wm.getngo.ui.activity.AuthSelectPointActivity
com.wm.getngo.ui.activity.AuthSelectCarActivity
com.wm.getngo.ui.activity.OrganizationListActivity
com.wm.getngo.ui.activity.OrganizationInfoActivity
com.wm.getngo.ui.activity.AccountBillActivity
com.wm.getngo.ui.activity.AccountRechargeActivity
com.wm.getngo.ui.activity.AccountDepositActivity
com.wm.getngo.ui.activity.AccountReturnDepositActivity
com.wm.getngo.ui.activity.AccountDepositStatusActivity
com.wm.getngo.ui.activity.AccountPeccancyUpLoadActivity
com.wm.getngo.ui.activity.AccountAuthActivity
com.wm.getngo.ui.activity.AccountAuthFailActivity
com.wm.getngo.ui.activity.AccountAuthStatusActivity
com.wm.getngo.ui.activity.UserLoginActivity
com.wm.getngo.ui.activity.OrderCancelActivity
com.wm.getngo.ui.activity.CouponListActivity
com.wm.getngo.ui.activity.CardDetailActivity
com.wm.getngo.ui.activity.InvoiceSelectTypeActivity
com.wm.getngo.ui.activity.InvoiceListActivity
com.wm.getngo.ui.activity.InvoiceInfoActivity
com.wm.getngo.ui.activity.InvoiceSuccessActivity
com.wm.getngo.ui.activity.AccountInfoActivity
com.wm.getngo.ui.activity.AccountInfoUpdateActivity
com.wm.getngo.ui.activity.FeedbackActivity
com.wm.getngo.ui.activity.ImagePreviewActivity
com.wm.getngo.ui.activity.VehicleInfoActivity
com.wm.evcos.ui.activity.QrCodeActivity
com.wm.evcos.ui.activity.StartChargeActivity
com.wm.evcos.ui.activity.ChargingActivity
com.wm.evcos.ui.activity.EvcosStationListActivity
com.wm.evcos.ui.activity.FeedbackActivity
com.wm.evcos.ui.activity.InputDeviceIdActivity
com.wm.evcos.ui.activity.EvcosOrderDetailActivity
com.wm.evcos.ui.activity.EvcosPayConfirmActivity
com.wm.evcos.ui.activity.EvcosPayResultActivity
com.wm.evcos.ui.activity.EvcosSearchActivity
com.wm.evcos.ui.activity.EvcosRatingListActivity
com.wm.evcos.ui.activity.RoutePointSelectActivity
com.wm.evcos.ui.activity.RoutePlanningActivity
com.wm.getngo.ui.activity.CouponExchangeActivity
com.wm.evcos.ui.activity.EvcosRatingActivity
com.wm.evcos.ui.activity.EvcosStationDetailActivity
com.wm.travel.ui.activity.TravelSelectPointActivity
com.wm.travel.ui.activity.TravelSelectCarActivity
com.wm.travel.ui.activity.TravelSelectDoorAddress
com.wm.travel.ui.activity.TravelOrderSureInfoActivity
com.wm.travel.ui.activity.TravelOrderInfoActivity
com.wm.travel.ui.activity.ReturnCarHandlerActivity
com.wm.travel.ui.activity.ReserveSuccessActivity
com.wm.travel.ui.activity.CarOverallActivity
com.wm.travel.ui.activity.CarPartActivity
com.wm.travel.ui.activity.CarPhotoPreviewActivity
com.wm.getngo.ui.activity.MyCouponActivity
com.wm.getngo.ui.activity.AllCardActivity
com.wm.getngo.ui.activity.UseCouponActivity
com.wm.getngo.ui.activity.ConsumingRecordActivity
com.wm.drive.activity.DriveOrderSureActivity
com.wm.drive.activity.DriveOrderInfoActivity
com.wm.drive.activity.DriveOrderCancelActivity
com.wm.drive.activity.DriveSelectPointActivity
com.wm.drive.activity.DriveSelectCarActivity
com.wm.getngo.ui.activity.AccountSelectCarActivity
com.wm.netcar.ui.activity.AlarmActivity
com.wm.netcar.ui.activity.AudioRecordAuthActivity
com.wm.netcar.ui.activity.EmergencyContactActivity
com.wm.netcar.ui.activity.ManageContactsActivity
com.wm.netcar.ui.activity.PhoneNumberProtectionActivity
com.wm.netcar.ui.activity.SecurityCenterActivity
com.wm.netcar.ui.activity.VerifiedActivity
com.wm.netcar.ui.activity.NetcarOrderActivity
com.wm.netcar.ui.activity.NetcarSearchActivity
com.wm.netcar.ui.activity.NetcarTripCancelActivity
com.wm.netcar.ui.activity.ValuationRulesActivity


在AndroidManifest文件中定义了android.intent.category.BROWSABLE属性的组件,可以通过浏览器唤起,这会导致远程命令执行漏洞攻击。建议:
(1)APP中任何接收外部输入数据的地方都是潜在的攻击点,过滤检查来自网页的参数。
(2)不要通过网页传输敏感信息,有的网站为了引导已经登录的用户到APP上使用,会使用脚本动态的生成URL Scheme的参数,其中包括了用户名、密码或者登录态token等敏感信息,让用户打开APP直接就登录了。恶意应用也可以注册相同的URL Sechme来截取这些敏感信息。Android系统会让用户选择使用哪个应用打开链接,但是如果用户不注意,就会使用恶意应用打开,导致敏感信息泄露或者其他风险。

參考案例:
http://www.wooyun.org/bugs/wooyun-2014-073875
http://www.wooyun.org/bugs/wooyun-2014-067798

参考资料:
http://wolfeye.baidu.com/blog/intent-scheme-url/
http://www.jssec.org/dl/android_securecoding_en.pdf
http://drops.wooyun.org/mobile/15202
http://blog.csdn.net/l173864930/article/details/36951805
http://drops.wooyun.org/papers/2893

警告

检测到6处provider的grantUriPermissions设置为true。
android.support.v4.content.FileProvider
com.wm.getngo.util.SelectPhotoFileProvider
com.huawei.hms.update.provider.UpdateProvider
cn.udesk.provider.UdeskFileProvider
com.luck.picture.lib.PictureFileProvider
com.yanzhenjie.permission.FileProvider


grant-uri-permission若设置为true,可被其它程序员通过uri访问到content provider的内容,容易造成信息泄露。

参考资料:
https://security.tencent.com/index.php/blog/msg/6


动态扫描发现风险点

风险等级 风险名称

服务端分析

风险等级 风险名称

警告

检测到?处XSS漏洞。
开发中...

警告

检测到?处XSS跨站漏洞。
开发中...

应用证书