安全分析报告:
安全分数
安全分数 41/100
风险评级
等级
- A
- B
- C
- F
严重性分布 (%)
隐私风险
8
用户/设备跟踪器
调研结果
高危
7
中危
32
信息
2
安全
0
关注
18
高危 该文件是World Writable。任何应用程序都可以写入文件
该文件是World Writable。任何应用程序都可以写入文件 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x05d-Testing-Data-Storage.md#testing-local-storage-for-sensitive-data-mstg-storage-1-and-mstg-storage-2 Files: com/sdk/j/a.java, line(s) 24
高危 应用程序使用带PKCS5/PKCS7填充的加密模式CBC。此配置容易受到填充oracle攻击。
应用程序使用带PKCS5/PKCS7填充的加密模式CBC。此配置容易受到填充oracle攻击。 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#identifying-insecure-andor-deprecated-cryptographic-algorithms-mstg-crypto-4 Files: com/chuanglan/shanyan_sdk/utils/b.java, line(s) 202 com/linecorp/android/security/encryption/StringCipher.java, line(s) 58 com/sdk/q/b.java, line(s) 66,107 com/sdk/v/e.java, line(s) 66
高危 不安全的Web视图实现。Web视图忽略SSL证书错误并接受任何SSL证书。此应用程序易受MITM攻击
不安全的Web视图实现。Web视图忽略SSL证书错误并接受任何SSL证书。此应用程序易受MITM攻击 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x05g-Testing-Network-Communication.md#webview-server-certificate-verification Files: com/seetong/app/seetong/ui/HelpActivity.java, line(s) 104,101 com/seetong/app/seetong/ui/NvrRecord.java, line(s) 4114,4111 com/seetong/app/seetong/ui/PrivacyPolicyActivity.java, line(s) 110,107 com/seetong/app/seetong/ui/VideoRecordActivity.java, line(s) 4062,4059 com/seetong/app/seetong/ui/WebView4G.java, line(s) 372,369 com/seetong/app/seetong/ui/WebViewCS.java, line(s) 392,389 com/seetong/app/seetong/ui/WebViewH5.java, line(s) 492,489 com/seetong/app/seetong/ui/userinfo/WithdrawH5.java, line(s) 136,132
高危 如果一个应用程序使用WebView.loadDataWithBaseURL方法来加载一个网页到WebView,那么这个应用程序可能会遭受跨站脚本攻击
如果一个应用程序使用WebView.loadDataWithBaseURL方法来加载一个网页到WebView,那么这个应用程序可能会遭受跨站脚本攻击 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x05h-Testing-Platform-Interaction.md#static-analysis-7 Files: com/seetong/app/seetong/ui/HelpActivity.java, line(s) 128,129,13,14 com/seetong/app/seetong/ui/PrivacyPolicyActivity.java, line(s) 134,135,13,14 com/seetong/app/seetong/ui/WebView4G.java, line(s) 433,434,23,24 com/seetong/app/seetong/ui/WebViewCS.java, line(s) 439,440,25,26 com/seetong/app/seetong/ui/WebViewH5.java, line(s) 206,207,27,28
高危 启用了调试配置。生产版本不能是可调试的
启用了调试配置。生产版本不能是可调试的 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x04c-Tampering-and-Reverse-Engineering.md#debugging-and-tracing Files: com/xuexiang/xui/BuildConfig.java, line(s) 3,8
高危 应用程序在加密算法中使用ECB模式。ECB模式是已知的弱模式,因为它对相同的明文块[UNK]产生相同的密文
应用程序在加密算法中使用ECB模式。ECB模式是已知的弱模式,因为它对相同的明文块[UNK]产生相同的密文 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#weak-block-cipher-mode Files: m/framework/utils/Data.java, line(s) 28,38,53
高危 应用程序包含隐私跟踪程序
此应用程序有多个8隐私跟踪程序。跟踪器可以跟踪设备或用户,是终端用户的隐私问题。
中危 应用程序已启用明文网络流量
[android:usesCleartextTraffic=true] 应用程序打算使用明文网络流量,例如明文HTTP,FTP协议,DownloadManager和MediaPlayer。针对API级别27或更低的应用程序,默认值为“true”。针对API级别28或更高的应用程序,默认值为“false”。避免使用明文流量的主要原因是缺乏机密性,真实性和防篡改保护;网络攻击者可以窃听传输的数据,并且可以在不被检测到的情况下修改它。
中危 Activity (com.facebook.CustomTabActivity) 未被保护。
[android:exported=true] 发现 Activity与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危 Broadcast Receiver (com.seetong.service.MainReceiver) 未被保护。
[android:exported=true] 发现 Broadcast Receiver与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危 Activity设置了TaskAffinity属性
(com.seetong.app.seetong.wxapi.WXEntryActivity) 如果设置了 taskAffinity,其他应用程序可能会读取发送到属于另一个任务的 Activity 的 Intent。为了防止其他应用程序读取发送或接收的 Intent 中的敏感信息,请始终使用默认设置,将 affinity 保持为包名
中危 Activity (com.seetong.app.seetong.wxapi.WXEntryActivity) 未被保护。
[android:exported=true] 发现 Activity与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危 Broadcast Receiver (com.seetong.service.MessageReceiver_XiaoMi) 未被保护。
[android:exported=true] 发现 Broadcast Receiver与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危 Service (com.seetong.service.MessageReceiver_Oppo) 受权限保护, 但是应该检查权限的保护级别。
Permission: com.coloros.mcs.permission.SEND_MCS_MESSAGE [android:exported=true] 发现一个 Service被共享给了设备上的其他应用程序,因此让它可以被设备上的任何其他应用程序访问。它受到一个在分析的应用程序中没有定义的权限的保护。因此,应该在定义它的地方检查权限的保护级别。如果它被设置为普通或危险,一个恶意应用程序可以请求并获得这个权限,并与该组件交互。如果它被设置为签名,只有使用相同证书签名的应用程序才能获得这个权限。
中危 Service (com.vivo.push.sdk.service.CommandClientService) 受权限保护, 但是应该检查权限的保护级别。
Permission: com.push.permission.UPSTAGESERVICE [android:exported=true] 发现一个 Service被共享给了设备上的其他应用程序,因此让它可以被设备上的任何其他应用程序访问。它受到一个在分析的应用程序中没有定义的权限的保护。因此,应该在定义它的地方检查权限的保护级别。如果它被设置为普通或危险,一个恶意应用程序可以请求并获得这个权限,并与该组件交互。如果它被设置为签名,只有使用相同证书签名的应用程序才能获得这个权限。
中危 Service (com.xiaomi.mipush.sdk.PushMessageHandler) 受权限保护, 但是应该检查权限的保护级别。
Permission: com.xiaomi.xmsf.permission.MIPUSH_RECEIVE [android:exported=true] 发现一个 Service被共享给了设备上的其他应用程序,因此让它可以被设备上的任何其他应用程序访问。它受到一个在分析的应用程序中没有定义的权限的保护。因此,应该在定义它的地方检查权限的保护级别。如果它被设置为普通或危险,一个恶意应用程序可以请求并获得这个权限,并与该组件交互。如果它被设置为签名,只有使用相同证书签名的应用程序才能获得这个权限。
中危 Broadcast Receiver (com.xiaomi.push.service.receivers.NetworkStatusReceiver) 未被保护。
[android:exported=true] 发现 Broadcast Receiver与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危 Activity (com.xiaomi.mipush.sdk.NotificationClickedActivity) 未被保护。
[android:exported=true] 发现 Activity与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危 Activity设置了TaskAffinity属性
(com.umeng.message.notify.UPushMessageNotifyActivity) 如果设置了 taskAffinity,其他应用程序可能会读取发送到属于另一个任务的 Activity 的 Intent。为了防止其他应用程序读取发送或接收的 Intent 中的敏感信息,请始终使用默认设置,将 affinity 保持为包名
中危 Activity-Alias (com.umeng.message.UMessageNotifyActivity) 未被保护。
[android:exported=true] 发现 Activity-Alias与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危 Activity (com.linecorp.linesdk.auth.internal.LineAuthenticationCallbackActivity) 未被保护。
[android:exported=true] 发现 Activity与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危 Broadcast Receiver (com.google.firebase.iid.FirebaseInstanceIdReceiver) 受权限保护, 但是应该检查权限的保护级别。
Permission: com.google.android.c2dm.permission.SEND [android:exported=true] 发现一个 Broadcast Receiver被共享给了设备上的其他应用程序,因此让它可以被设备上的任何其他应用程序访问。它受到一个在分析的应用程序中没有定义的权限的保护。因此,应该在定义它的地方检查权限的保护级别。如果它被设置为普通或危险,一个恶意应用程序可以请求并获得这个权限,并与该组件交互。如果它被设置为签名,只有使用相同证书签名的应用程序才能获得这个权限。
中危 Service (com.google.android.gms.auth.api.signin.RevocationBoundService) 受权限保护, 但是应该检查权限的保护级别。
Permission: com.google.android.gms.auth.api.signin.permission.REVOCATION_NOTIFICATION [android:exported=true] 发现一个 Service被共享给了设备上的其他应用程序,因此让它可以被设备上的任何其他应用程序访问。它受到一个在分析的应用程序中没有定义的权限的保护。因此,应该在定义它的地方检查权限的保护级别。如果它被设置为普通或危险,一个恶意应用程序可以请求并获得这个权限,并与该组件交互。如果它被设置为签名,只有使用相同证书签名的应用程序才能获得这个权限。
中危 Activity (tv.danmaku.ijk.media.example.activities.VideoActivity) 未被保护。
[android:exported=true] 发现 Activity与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危 Activity (com.alipay.sdk.app.PayResultActivity) 未被保护。
[android:exported=true] 发现 Activity与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危 Activity (com.alipay.sdk.app.AlipayResultActivity) 未被保护。
[android:exported=true] 发现 Activity与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危 Service (com.huawei.hms.support.api.push.service.HmsMsgService) 未被保护。
[android:exported=true] 发现 Service与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危 Content Provider (com.huawei.hms.support.api.push.PushProvider) 未被保护。
[android:exported=true] 发现 Content Provider与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危 应用程序创建临时文件。敏感信息永远不应该被写进临时文件
应用程序创建临时文件。敏感信息永远不应该被写进临时文件 Files: com/linchaolong/android/imagepicker/cropper/CropImageActivity.java, line(s) 170 com/seetong/app/seetong/ui/facecatcher/ToolsFile.java, line(s) 68,72
中危 IP地址泄露
IP地址泄露 Files: com/chuanglan/shanyan_sdk/a.java, line(s) 13 com/chuanglan/shanyan_sdk/a/a.java, line(s) 26 com/chuanglan/shanyan_sdk/d/f.java, line(s) 174 com/chuanglan/shanyan_sdk/e/g.java, line(s) 37,68 com/chuanglan/shanyan_sdk/tool/c.java, line(s) 210 com/chuanglan/shanyan_sdk/tool/i.java, line(s) 296 com/chuanglan/shanyan_sdk/tool/k.java, line(s) 290 com/chuanglan/shanyan_sdk/tool/l.java, line(s) 340,341 com/chuanglan/shanyan_sdk/utils/p.java, line(s) 24,24,24,24 com/custom/etc/EtcInfo.java, line(s) 10 com/seetong/app/seetong/BuildConfig.java, line(s) 9 com/seetong/app/seetong/sdk/impl/PlayerDevice.java, line(s) 135 com/seetong/app/seetong/ui/LanSearchActivity.java, line(s) 65,64,66 com/seetong/app/seetong/ui/NVRScanAddActivity.java, line(s) 84,83,85 com/seetong/app/seetong/ui/WelcomeActivity.java, line(s) 462 com/seetong/app/seetong/ui/WifiEtcUI_STEP2.java, line(s) 264 com/seetong/app/seetong/ui/WifiPlayDeviceUI.java, line(s) 83,162 ipc/android/sdk/impl/FunclibAgent.java, line(s) 472 org/android/spdy/SpdyRequest.java, line(s) 28,54,73,96,121,141,167,186,209,234
中危 应用程序使用SQLite数据库并执行原始SQL查询。原始SQL查询中不受信任的用户输入可能会导致SQL注入。敏感信息也应加密并写入数据库
应用程序使用SQLite数据库并执行原始SQL查询。原始SQL查询中不受信任的用户输入可能会导致SQL注入。敏感信息也应加密并写入数据库 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x04h-Testing-Code-Quality.md#injection-flaws-mstg-arch-2-and-mstg-platform-2 Files: com/chuanglan/shanyan_sdk/b/e.java, line(s) 6,55 com/chuanglan/shanyan_sdk/b/f.java, line(s) 4,38 com/seetong/app/seetong/model/AlarmMessage.java, line(s) 5,473 com/seetong/app/seetong/model/DBHelper.java, line(s) 4,5,39 net/tsz/afinal/FinalDb.java, line(s) 6,7,204
中危 SHA-1是已知存在哈希冲突的弱哈希
SHA-1是已知存在哈希冲突的弱哈希 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#identifying-insecure-andor-deprecated-cryptographic-algorithms-mstg-crypto-4 Files: com/chuanglan/shanyan_sdk/c/f.java, line(s) 114 com/chuanglan/shanyan_sdk/utils/b.java, line(s) 39 com/jg/ids/i/i.java, line(s) 145 com/linecorp/android/security/encryption/StringCipher.java, line(s) 57 com/stool/utils/AESEncryptor.java, line(s) 30,32 m/framework/utils/Data.java, line(s) 17 org/repackage/a/a/a/a/c.java, line(s) 59
中危 文件可能包含硬编码的敏感信息,如用户名、密码、密钥等
文件可能包含硬编码的敏感信息,如用户名、密码、密钥等 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x05d-Testing-Data-Storage.md#checking-memory-for-sensitive-data-mstg-storage-10 Files: com/chuanglan/shanyan_sdk/utils/w.java, line(s) 122,86,98,110,75,44,54,65 com/custom/etc/EtcInfo.java, line(s) 25,22,31,14,19,23,26,15,20,5 com/linecorp/android/security/encryption/StringCipher.java, line(s) 34 com/linecorp/linesdk/internal/OneTimePassword.java, line(s) 21 com/sdk/base/framework/bean/DataUtils.java, line(s) 198 com/seetong/app/seetong/comm/Define.java, line(s) 14 com/seetong/app/seetong/login/LoginConfig.java, line(s) 14 com/seetong/app/seetong/model/AccountListBean.java, line(s) 106 com/seetong/app/seetong/model/LanDeviceInfo.java, line(s) 20 com/seetong/app/seetong/sdk/impl/LibImpl.java, line(s) 2867 com/seetong/app/seetong/sdk/impl/PlayerDevice.java, line(s) 134 com/seetong/app/seetong/tools/UmPushConstants.java, line(s) 4,11,8,12,9,5,13 com/seetong/app/seetong/ui/Constant.java, line(s) 20,19,85,86,87 com/seetong/app/seetong/ui/MainActivity2.java, line(s) 145 com/seetong/app/seetong/ui/SettingUI_Alarm_Music.java, line(s) 100,101 com/seetong/app/seetong/wifi/WifiAdmin.java, line(s) 161 com/seetong/lib_base/bean/ChannelInfo.java, line(s) 61 com/seetong/lib_base/bean/ChannelInfoBean.java, line(s) 136 com/seetong/lib_base/bean/ScanDeviceBean.java, line(s) 111 com/seetong/lib_base/constant/ConstantExKt.java, line(s) 28,30 com/seetong/lib_base/constant/SensorsConstant.java, line(s) 160 com/stool/baidutts/util/AutoCheck.java, line(s) 298 com/stool/utils/TencentMmkvDeviceSortUtils.java, line(s) 15,20 com/stool/zxing/decode/CaptureActivity.java, line(s) 59 com/stool/zxing/decode/H5CaptureActivity.java, line(s) 51 com/stool/zxing/decode/Intents.java, line(s) 45 com/thoughtworks/xstream/core/util/CustomObjectInputStream.java, line(s) 15 com/thoughtworks/xstream/core/util/CustomObjectOutputStream.java, line(s) 11 io/jsonwebtoken/JwsHeader.java, line(s) 8 ipc/android/sdk/com/TPS_THIRD_USER_INFO.java, line(s) 189 org/android/spdy/SpdyProtocol.java, line(s) 43
中危 应用程序使用不安全的随机数生成器
应用程序使用不安全的随机数生成器 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#weak-random-number-generators Files: com/chuanglan/shanyan_sdk/utils/e.java, line(s) 4 com/seetong/app/seetong/Global.java, line(s) 97 com/seetong/app/seetong/ui/jptabbar/badgeview/ExplosionAnimator.java, line(s) 12 com/stool/resample/vavi/sound/pcm/resampling/ssrc/SSRC.java, line(s) 10 com/xuexiang/xui/utils/ColorUtils.java, line(s) 5 com/xuexiang/xui/widget/button/shinebutton/ShineView.java, line(s) 17 com/xuexiang/xui/widget/textview/badge/BadgeAnimator.java, line(s) 13 m/framework/ui/widget/asyncview/AsyncImageView.java, line(s) 11 net/tsz/afinal/http/MultipartEntity.java, line(s) 11 org/android/spdy/SpdyBytePool.java, line(s) 3
中危 MD5是已知存在哈希冲突的弱哈希
MD5是已知存在哈希冲突的弱哈希 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#identifying-insecure-andor-deprecated-cryptographic-algorithms-mstg-crypto-4 Files: com/chuanglan/shanyan_sdk/tool/j.java, line(s) 25 com/chuanglan/shanyan_sdk/utils/b.java, line(s) 22 com/chuanglan/shanyan_sdk/utils/j.java, line(s) 26 com/nostra13/universalimageloader/cache/disc/naming/Md5FileNameGenerator.java, line(s) 19 com/sdk/b/a.java, line(s) 58,82 m/framework/utils/Data.java, line(s) 99 net/tsz/afinal/core/FileNameGenerator.java, line(s) 10
中危 应用程序可以读取/写入外部存储器,任何应用程序都可以读取写入外部存储器的数据
应用程序可以读取/写入外部存储器,任何应用程序都可以读取写入外部存储器的数据 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x05d-Testing-Data-Storage.md#external-storage Files: com/chuanglan/shanyan_sdk/b/c.java, line(s) 21,21 com/nostra13/universalimageloader/utils/StorageUtils.java, line(s) 23,49,49,54,54,59 com/seetong/app/seetong/comm/Define.java, line(s) 138 com/seetong/app/seetong/comm/Tools.java, line(s) 25,18,18,24 com/seetong/app/seetong/ui/facecatcher/ToolsFile.java, line(s) 68,72 m/framework/utils/DeviceHelper.java, line(s) 263,267 net/tsz/afinal/utils/Utils.java, line(s) 27,35
中危 可能存在跨域漏洞。在 WebView 中启用从 URL 访问文件可能会泄漏文件系统中的敏感信息
可能存在跨域漏洞。在 WebView 中启用从 URL 访问文件可能会泄漏文件系统中的敏感信息 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x05h-Testing-Platform-Interaction.md#static-analysis-6 Files: com/chuanglan/shanyan_sdk/view/CTCCPrivacyProtocolActivity.java, line(s) 109,111
中危 不安全的Web视图实现。可能存在WebView任意代码执行漏洞
不安全的Web视图实现。可能存在WebView任意代码执行漏洞 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x05h-Testing-Platform-Interaction.md#testing-javascript-execution-in-webviews-mstg-platform-5 Files: com/seetong/app/seetong/ui/NvrRecord.java, line(s) 4039,4075 com/seetong/app/seetong/ui/VideoRecordActivity.java, line(s) 3988,4024 com/seetong/app/seetong/ui/WebView4G.java, line(s) 541,268 com/seetong/app/seetong/ui/WebViewCS.java, line(s) 230,287 com/seetong/app/seetong/ui/WebViewH5.java, line(s) 572,366
中危 此应用可能包含硬编码机密信息
从应用程序中识别出以下机密确保这些不是机密或私人信息 vivo推送的=> "com.vivo.push.app_id" : "101382665" 华为HMS Core 应用ID的=> "com.huawei.hms.client.appid" : "appid=100310043" 荣耀推送的=> "com.hihonor.push.app_id" : "220879724" vivo推送的=> "com.vivo.push.api_key" : "2a5d645ae87b536a83a9d231cc175959" vivo推送的=> "local_iv" : "MzMsMzQsMzUsMzYsMzcsMzgsMzksNDAsNDEsMzIsMzgsMzcsMzYsMzUsMzQsMzMsI0AzNCwzMiwzMywzNywzMywzNCwzMiwzMywzMywzMywzNCw0MSwzNSwzNSwzMiwzMiwjQDMzLDM0LDM1LDM2LDM3LDM4LDM5LDQwLDQxLDMyLDM4LDM3LDMzLDM1LDM0LDMzLCNAMzQsMzIsMzMsMzcsMzMsMzQsMzIsMzMsMzMsMzMsMzQsNDEsMzUsMzIsMzIsMzI" "firebase_database_url" : "https://seetong-279f8.firebaseio.com" "nvr_password_show_password" : "Passwort:" "nvr_password_show_username" : "Nutzername:" "nvr_password_show_username" : "Username: " "pref_key_using_opensl_es" : "pref.using_opensl_es" "password" : "Passwort" "pref_key_enable_background_play" : "pref.enable_background_play" "more_user_name" : "UserName" "more_user_name" : "Nutzername" "pref_key_using_media_codec" : "pref.using_media_codec" "pref_key_pixel_format" : "pref.pixel_format" "pref_key_player" : "pref.player" "forget_password" : "Retrieve" "password" : "Lozinka" "st_engineering_company_auth_title" : "Unternehmenszertifizierung:" "pref_key_enable_surface_view" : "pref.enable_surface_view" "password" : "Password" "st_log_detail_user_name" : "Benutzername" "st_login_username" : "Benutzername:" "facebook_client_token" : "9f1c47dbbdd07c9d6086fec283c581c9" "google_api_key" : "AIzaSyBIzCq2FdY-VAlZtTG-pfmeA2-sUtJddNI" "forget_password" : "Abrufen" "pref_key_using_android_player" : "pref.using_android_player" "pref_key_using_media_codec_auto_rotate" : "pref.using_media_codec_auto_rotate" "pref_key_enable_no_view" : "pref.enable_no_view" "nvr_password_show_password" : "Password: " "google_crash_reporting_api_key" : "AIzaSyBIzCq2FdY-VAlZtTG-pfmeA2-sUtJddNI" "pref_key_media_codec_handle_resolution_change" : "pref.media_codec_handle_resolution_change" "nvr_password_show_password" : "Lozinka" "pref_key_using_mediadatasource" : "pref.using_mediadatasource" 5322d1c656240b03250d1032 17b9983f96d5f727b3e84fb3155b0f5f 013784cf-f7e3-55b4-6c4c-9fd140100a16 a54da332f3f44f0980e104d87edde0ec 2a5d645ae87b536a83a9d231cc175959 d44bc439-abfd-45a2-b575-925416129601 c39dd561327e484bb1228b5459063022 8a3c4b262d721acd49a4bf97d5213199c86fa2b9 2438bce1ddb7bd026d5ff89f598b3b5e5bb824b3 a915f817673a45f08065a2236dfe85a7 9b8f518b086098de3d77736f9458a3d2f6f95a37 1c628e14f22e1eaa233f45a41c1c3fa6 c92cdB49080664319E705A82cBFfF61c tzOkDXYRRNHRj8FqyQnix1oVzXTNOXLs df6b721c8b4d3b6eb44c861d4415007e5a35fc95 a4b7452e2ed8f5f191058ca7bbfd26b0d3214bfc c56fb7d591ba6704df047fd98f535372fea00211 cc2751449a350f668590264ed76692694a80308a 8a56b4db-cec6-4a3c-bcbf-7c10a2fffa16 d44bc439-abfd-45a2-b575-925416129600 003784cf-f7e3-55b4-6c4c-9fd140100a16
信息 应用程序记录日志信息,不得记录敏感信息
应用程序记录日志信息,不得记录敏感信息 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x05d-Testing-Data-Storage.md#logs Files: cn/bingoogolapple/qrcode/core/BGAQRCodeUtil.java, line(s) 45,51 cn/com/heaton/blelibrary/ble/Ble.java, line(s) 110,302,306,324,74,86,94,104 cn/com/heaton/blelibrary/ble/BleLog.java, line(s) 49,31,37,43 cn/com/heaton/blelibrary/ble/BleRequestImpl.java, line(s) 90,105,108,118,140,156,182,201,209,219,235,248,307,357,388,460,479,508,526,553,595,623,629,652,738,739,80,131,318,323,328,334,413,485,490,497,574,604,612,668,669,432,625,655,659 cn/com/heaton/blelibrary/ble/callback/wrapper/BluetoothChangedObserver.java, line(s) 59,67 cn/com/heaton/blelibrary/ble/proxy/RequestProxy.java, line(s) 31 cn/com/heaton/blelibrary/ble/queue/ConnectQueue.java, line(s) 48 cn/com/heaton/blelibrary/ble/queue/reconnect/DefaultReConnectHandler.java, line(s) 43,31,95,98,84 cn/com/heaton/blelibrary/ble/queue/retry/RetryDispatcher.java, line(s) 26,35 cn/com/heaton/blelibrary/ble/request/AdvertiserRequest.java, line(s) 34,99,41,45,49,51,53 cn/com/heaton/blelibrary/ble/request/ConnectRequest.java, line(s) 100,171,175,210,226,239,242,58,147,199,248 cn/com/heaton/blelibrary/ble/request/Rproxy.java, line(s) 72 cn/com/heaton/blelibrary/ble/scan/BluetoothScannerImplLollipop.java, line(s) 45,79,51,29 com/chuanglan/shanyan_sdk/utils/o.java, line(s) 29,47,35,23,41 com/handmark/pulltorefresh/library/PullToRefreshBase.java, line(s) 331 com/handmark/pulltorefresh/library/internal/Utils.java, line(s) 9 com/linchaolong/android/imagepicker/ImagePicker.java, line(s) 227 com/linchaolong/android/imagepicker/cropper/BitmapUtils.java, line(s) 186 com/linchaolong/android/imagepicker/cropper/CropOverlayView.java, line(s) 690 com/linecorp/android/security/TLSSocketFactory.java, line(s) 73,74,81 com/linecorp/linesdk/internal/LoginHandler.java, line(s) 40,44 com/linecorp/linesdk/internal/nwclient/IdTokenParser.java, line(s) 29 com/linecorp/linesdk/internal/nwclient/LineAuthenticationApiClient.java, line(s) 147,159 com/linecorp/linesdk/internal/nwclient/OpenIdSigningKeyResolver.java, line(s) 41,61,68 com/linecorp/linesdk/internal/nwclient/core/ChannelServiceHttpClient.java, line(s) 297,299,303,304,311,313,319,320 com/nineoldandroids/animation/PropertyValuesHolder.java, line(s) 148,176,222,240,242,259,261,297,299,425,427,515,517 com/nostra13/universalimageloader/cache/disc/impl/ext/DiskLruCache.java, line(s) 115 com/petterp/floatingx/assist/helper/AppHelper.java, line(s) 81,91 com/petterp/floatingx/assist/helper/ScopeHelper.java, line(s) 44 com/petterp/floatingx/impl/control/FxAppControlImpl.java, line(s) 213,97 com/petterp/floatingx/impl/control/FxBasisControlImpl.java, line(s) 122,457,507,537,483 com/petterp/floatingx/impl/lifecycle/FxProxyLifecycleCallBackImpl.java, line(s) 149,190 com/petterp/floatingx/util/FxLog.java, line(s) 44,54,49 com/petterp/floatingx/view/FxClickHelper.java, line(s) 91 com/petterp/floatingx/view/FxManagerView.java, line(s) 117,143,204,315,344,368,382,510,587,624,635,673,233,537,716 com/petterp/floatingx/view/FxViewConfigHelper.java, line(s) 119,152 com/sahooz/library/countrypicker/PyAdapter.java, line(s) 167 com/sdk/a/a.java, line(s) 37,65 com/sdk/a/c.java, line(s) 197,204,114,141,154,340 com/sdk/base/framework/utils/log/LogUtils.java, line(s) 18,44,53,63,81 com/sdk/d/c.java, line(s) 182 com/sdk/h/a.java, line(s) 13 com/sdk/mobile/manager/login/cucc/UiOauthManager.java, line(s) 27,31,32,38,39,40,41 com/sdk/n/a.java, line(s) 185,187,201,204 com/sdk/p/f.java, line(s) 59,64,73 com/sdk/w/a.java, line(s) 196 com/sdk/x/a.java, line(s) 56,93,170,320 com/sdk/x/c.java, line(s) 20,55 com/seetong/app/seetong/Global.java, line(s) 782,785,805,808,816,1133,1275,1286,1329,1455,1467,1598,2429,2438,2454,2460,2464,2480,2486,2490,2502,2510,2535,2548,2707,272,1173,1188,1261,1297,1720,1723,2004,2151,2157,2181,2198,2212,2234,2244,2260,2271,2293,2395,2450,2476,2555,2557,835 com/seetong/app/seetong/ble/BLEManager.java, line(s) 511,395,500 com/seetong/app/seetong/comm/PushUtils.java, line(s) 288,136,253,261,330,68,96,103,107,139,264,274 com/seetong/app/seetong/comm/Tools.java, line(s) 31,35,37,41,28 com/seetong/app/seetong/model/AlarmMessage.java, line(s) 408,412,454,479 com/seetong/app/seetong/model/AlertMsgModelDaoImpl.java, line(s) 21,32,39 com/seetong/app/seetong/model/AlgorithmDownloadProgress.java, line(s) 59 com/seetong/app/seetong/model/AlgorithmEntranceInfo.java, line(s) 26,30,68 com/seetong/app/seetong/model/Algorithms.java, line(s) 111,116,121 com/seetong/app/seetong/model/CloudAlarmUtils.java, line(s) 31,54 com/seetong/app/seetong/model/ComboInfo.java, line(s) 78 com/seetong/app/seetong/model/DBCacheCloudAlarm.java, line(s) 69,81,123,128,166,207,221,224,237,247,257,273 com/seetong/app/seetong/model/DBCacheCloudRecord.java, line(s) 64,83,102,125,128,141,147,152,169 com/seetong/app/seetong/model/DBHelper.java, line(s) 33,52,111 com/seetong/app/seetong/model/DeviceCapabilitySet.java, line(s) 122,125,128,140,143,146 com/seetong/app/seetong/model/DeviceSetting.java, line(s) 208,216,238,246 com/seetong/app/seetong/model/StartAdModel.java, line(s) 126,129 com/seetong/app/seetong/model/TecentCloudStorage.java, line(s) 73,104,291,303 com/seetong/app/seetong/network/NetworkRequestUtils.java, line(s) 78,106,60,86,94,98 com/seetong/app/seetong/sdk/impl/LibImpl.java, line(s) 520,548,1378,1818,1831,2585,348,352,361,365,402,430,437,563,579,971,973,991,1028,1220,1229,1242,1251,1260,1277,1302,1311,1324,1404,1512,1531,1539,1714,2323,2330,2367,2426,2435,2460,2654,2661,2676,2682,2857,2882,2906,2954,3043,3052,3071,3077,268,278,283,412,475,486,494,501,601,615,651,659,668,676,687,689,698,700,710,712,720,722,771,794,913,917,932,935,965,1063,1068,1085,1098,1105,1112,1136,1141,1179,1363,1400,1409,1410,1435,1439,1523,1528,1653,1685,1703,1762,1792,1867,2130,2243,2253,2271,2465,2551,2558,2565,2572,2580,2604,2707,2758,2767,2783,2790,2795,2829,2834,2867,2901,2919,2937,2961,2974,2982,2987,2992,3001,3016,3021,3026,3031,3101,2449,2491,2500,2508,2652,2659,2674,2680,2710,3041,3050,3069,3075,3103 com/seetong/app/seetong/sdk/impl/PlayerDevice.java, line(s) 647,964,974,660,684,728,740,762,779,805,896 com/seetong/app/seetong/sdk/impl/XmlImpl.java, line(s) 566,496,506,509,510,512,518,527,529,530,532,539,547 com/seetong/app/seetong/sdk/impl/XmlParse.java, line(s) 17,42,55,60 com/seetong/app/seetong/tools/AlertMsgUtil.java, line(s) 60,102 com/seetong/app/seetong/tools/Bind4gLogUtil.java, line(s) 62,65,69,40 com/seetong/app/seetong/tools/DownloadAlgorithmUtil.java, line(s) 38,53,59,107,124,150,154,160,167,176,182 com/seetong/app/seetong/tools/ProtoUtil.java, line(s) 53,65,87,107,127,146,163,186,469,479 com/seetong/app/seetong/tools/RealmUtil.java, line(s) 39,45 com/seetong/app/seetong/tools/UmPushHelper.java, line(s) 38 com/seetong/app/seetong/tools/WSManager.java, line(s) 194,156,202,209,227,235,66,82,91,115,140,143,150,172,187,281 com/seetong/app/seetong/ui/AlarmAreaActivity.java, line(s) 141,242,250 com/seetong/app/seetong/ui/AlarmAreaActivity_Face.java, line(s) 150,251,259 com/seetong/app/seetong/ui/AlarmAreaActivity_IoT.java, line(s) 141,242,250 com/seetong/app/seetong/ui/AlarmAreaChoose.java, line(s) 243 com/seetong/app/seetong/ui/AlarmAreaDrawLineActivity.java, line(s) 170,282,291 com/seetong/app/seetong/ui/AlarmFragment2.java, line(s) 1274,1413,1502,1714,1717,204,222,377,955,962,1130,1280,1430,1443,1447,1455,1461,1468,1481 com/seetong/app/seetong/ui/AlbumActivity.java, line(s) 333,386,320,381 com/seetong/app/seetong/ui/CloudAnd4gUtils.java, line(s) 22,41,65,67,76,87,96 com/seetong/app/seetong/ui/DeviceFragment2.java, line(s) 373,876,288 com/seetong/app/seetong/ui/DeviceListFragment2.java, line(s) 316,505 com/seetong/app/seetong/ui/DeviceUpgradeActivity.java, line(s) 239 com/seetong/app/seetong/ui/FeedbackActivity.java, line(s) 402,416,418,319,370,378,100,104 com/seetong/app/seetong/ui/ImageFlipNvrUI.java, line(s) 173 com/seetong/app/seetong/ui/ImageFlipUI.java, line(s) 291,296,304,358 com/seetong/app/seetong/ui/ImageScanner.java, line(s) 54,67 com/seetong/app/seetong/ui/LanSearchActivity.java, line(s) 588,589,442,596,336,341,347,407,480,484,489,490,494,511,518,543,548,599,630 com/seetong/app/seetong/ui/LoginActivity.java, line(s) 479,514,521,547 com/seetong/app/seetong/ui/MainActivity2.java, line(s) 286,306,1720,1765,235,272,281,291,296,301,323,330,332,941,944,1048,1094,1099,1102,1144,1466,1473,1475,1485,1487,1489,1502,1508,1510,1512,1743,1755,1778,2074,232,245,630,779,820,847,932,1110,1400,1449,1526,1527,1600,1625,1679,1681,1734,1737,1751,1773,1785,1971,2016,2044 com/seetong/app/seetong/ui/MediaParamNvrChanUI.java, line(s) 528,443 com/seetong/app/seetong/ui/MediaParamUI.java, line(s) 564,395 com/seetong/app/seetong/ui/MessageFragment.java, line(s) 760,823,745,818 com/seetong/app/seetong/ui/MicroServiceUtils.java, line(s) 48,58,73,87,101,115,128,27,38,71,153,164 com/seetong/app/seetong/ui/MineFragment.java, line(s) 382,390 com/seetong/app/seetong/ui/MotionDetectUI_Detect.java, line(s) 109,326 com/seetong/app/seetong/ui/MotionDetectUI_Detect_IoT.java, line(s) 431,567 com/seetong/app/seetong/ui/MotionDetectUI_HumanFormDet.java, line(s) 357 com/seetong/app/seetong/ui/MotionDetectUI_IoT.java, line(s) 496,543,587 com/seetong/app/seetong/ui/MotionDetectUI_PushTimeSet_IoT.java, line(s) 66,577,597 com/seetong/app/seetong/ui/MotionDetectUI_PushTimeSet_IoT_38V2.java, line(s) 76,619,639 com/seetong/app/seetong/ui/MotionDetectUI_VehicleFormDet.java, line(s) 398 com/seetong/app/seetong/ui/MsgListFragment.java, line(s) 158 com/seetong/app/seetong/ui/MsgSetActivity.java, line(s) 139 com/seetong/app/seetong/ui/MultiChanelVideoFragment.java, line(s) 2949,276,961,1021,1024,1518,1536,1642,1713,1909,1919,1952,2153,2157,2273,2359,2404,2549,2726,2750,2939,3053,260,285,302,322,342,726,1472,1487,1550,1563,2298,2377,2710,2777,2952,3407,3430,3436,3507,3516,3526,3535,4145,4260,4285,2168 com/seetong/app/seetong/ui/NVRScanAddActivity.java, line(s) 927,634,864,878,920,959 com/seetong/app/seetong/ui/NativeImageLoader.java, line(s) 109 com/seetong/app/seetong/ui/NetImproveActivity.java, line(s) 99,250,293,299,306,315,354,423,500 com/seetong/app/seetong/ui/NetTroubleShootingActivity.java, line(s) 46,61,70,83,203,206,290 com/seetong/app/seetong/ui/NetTroubleShootingStep1Activity.java, line(s) 168,69,71,81 com/seetong/app/seetong/ui/NvrRecord.java, line(s) 2724,2803,2900,2930,331,1814,1818,1826,1860,2355,2416,2432,2566,2568,2585,2586,2588,2593,2601,2602,2604,2609,2618,2627,2988,3177,3194,3197,3234,3468,3632,3654,3742,3762,3798,3821,3833,3856,3957,3981,3987,4042,4044,4189,292,304,314,326,359,478,604,1641,1677,1696,1889,1963,2037,2052,2074,2100,2116,2133,2158,2207,2225,2239,2360,2437,2444,2480,2698,2881,2905,2911,2920,3052,3066,3103,3217,3223,3291,3313,3391,3451,3453,3600,3663,3696,3715,3780,3786,3804,3831,3840,3854,3861,3878,3887,3995,4001,4030,4094,4100,4105,4130,4139 com/seetong/app/seetong/ui/PictureFragment.java, line(s) 80,98,356,362,372,377 com/seetong/app/seetong/ui/PlayMultiVideoFragment.java, line(s) 3178,289,1050,1158,1161,1574,1592,1698,1764,1944,1954,1980,2149,2153,2264,2335,2381,2551,2646,2739,2966,2987,3168,3282,3294,3806,263,294,311,332,345,826,1544,1605,1623,2163,2165,2286,2354,2950,2998,3181,3517,3546,3565,3571,3728,3736,3770,3784,3797,3857,3942,3967,4054,2167 com/seetong/app/seetong/ui/PlayerActivity.java, line(s) 298,461,556,3599,3601,3605,3607,3609,3612,3616,3693,3702,3868,4043,425,430,507,520,532,570,708,1333,2857,2916,2943,3412,3514,3527,3530,3984,3994,4134,4167,4209 com/seetong/app/seetong/ui/PlayerSettingActivity.java, line(s) 1398,1297,1302,1375,1477,1619,1625,1345,1569,1659,1800 com/seetong/app/seetong/ui/PlayerSettingActivity_Advance.java, line(s) 697,674,905,911,365,936 com/seetong/app/seetong/ui/PlayerSettingActivity_NVR.java, line(s) 656,633,842,848,873 com/seetong/app/seetong/ui/PrivacyPolicyActivity.java, line(s) 80 com/seetong/app/seetong/ui/RegisterPasswordActivity.java, line(s) 203 com/seetong/app/seetong/ui/SettingUI_About_Wifi.java, line(s) 170,183,198,294,320,478,480,296,322 com/seetong/app/seetong/ui/SettingUI_Alarm_Music.java, line(s) 769,787,789,808,812,814,822,329,343,800,804,275,282,292,300,305,320,323,325,346,465,492,536,583,595,630,733,741,897,909,780 com/seetong/app/seetong/ui/SettingUI_Alarm_Music_Choose.java, line(s) 107,117,155,179,219 com/seetong/app/seetong/ui/SettingUI_Drive.java, line(s) 131,174,197 com/seetong/app/seetong/ui/SettingUI_Light.java, line(s) 208,197,213,225,288 com/seetong/app/seetong/ui/SettingUI_Light_66E.java, line(s) 115,159 com/seetong/app/seetong/ui/SettingUI_Light_IoT.java, line(s) 552,273,274,276,300,305,315,377,402,484,554 com/seetong/app/seetong/ui/SettingUI_OneKeyDefense.java, line(s) 177 com/seetong/app/seetong/ui/SettingUI_Record.java, line(s) 380,236,285,295 com/seetong/app/seetong/ui/SettingUI_Speaker.java, line(s) 148,162,212,249 com/seetong/app/seetong/ui/SettingUI_Speaker_Trans.java, line(s) 166,250 com/seetong/app/seetong/ui/SettingUI_SpeedTest.java, line(s) 125,142,150,172 com/seetong/app/seetong/ui/SettingUI_SwitchRouter.java, line(s) 165,187,226,117,161 com/seetong/app/seetong/ui/ShareDeviceActivity.java, line(s) 212,242,253 com/seetong/app/seetong/ui/ShareDeviceEditRightActivity.java, line(s) 164,233,254,443 com/seetong/app/seetong/ui/ShareDeviceLinkActivity.java, line(s) 152,195,210,222 com/seetong/app/seetong/ui/ShareDeviceLinkAddActivity.java, line(s) 76,81,122,167,170,173,176,183 com/seetong/app/seetong/ui/ShareDeviceSetRightActivity.java, line(s) 268,353,385,515 com/seetong/app/seetong/ui/SmartAlarmConfigEntrance.java, line(s) 227 com/seetong/app/seetong/ui/SmartDetectUI.java, line(s) 151,204,220 com/seetong/app/seetong/ui/SmartDetectUI_IoT.java, line(s) 195 com/seetong/app/seetong/ui/SpeedTestResult.java, line(s) 46 com/seetong/app/seetong/ui/SplashDialog.java, line(s) 104,108,160 com/seetong/app/seetong/ui/StickyGridAdapter.java, line(s) 81 com/seetong/app/seetong/ui/StickyGridAdapterChannel.java, line(s) 60 com/seetong/app/seetong/ui/StickyGridAdapterPreset.java, line(s) 78 com/seetong/app/seetong/ui/TimeZoneUI.java, line(s) 265,310,316,715,723,418,420 com/seetong/app/seetong/ui/TpsBaseActivity.java, line(s) 309,323,325,588,592,602,611 com/seetong/app/seetong/ui/UI_CONSTANT.java, line(s) 266,272 com/seetong/app/seetong/ui/UserInfoActivity.java, line(s) 149 com/seetong/app/seetong/ui/VideoFragment2.java, line(s) 97,115,383,390,401,406 com/seetong/app/seetong/ui/VideoRecordActivity.java, line(s) 2705,2783,2880,2915,324,1673,1677,1685,1719,2278,2315,2376,2392,2507,2509,2526,2527,2535,2540,2548,2549,2557,2562,2571,2579,2978,3170,3442,3605,3627,3697,3717,3751,3774,3786,3809,3909,3933,3939,3991,3993,285,297,307,319,352,548,701,1505,1541,1560,1748,1826,2021,2036,2058,2084,2095,2112,2137,2174,2192,2206,2262,2265,2268,2270,2273,2276,2281,2283,2286,2289,2296,2320,2397,2404,2444,2680,2861,2885,2891,2900,2904,3054,3090,3153,3159,3227,3248,3353,3425,3427,3573,3636,3651,3670,3735,3741,3757,3784,3793,3807,3814,3831,3840,3944,3950,3979,4042,4048,4053,4078,4087 com/seetong/app/seetong/ui/VideoScanner.java, line(s) 55,68 com/seetong/app/seetong/ui/WebView4G.java, line(s) 400,496,533,186,213,249,288,347,365,427,461,466,478 com/seetong/app/seetong/ui/WebViewCS.java, line(s) 325,233,235,275,307,367,385,466 com/seetong/app/seetong/ui/WebViewH5.java, line(s) 425,329,220,231,467,485 com/seetong/app/seetong/ui/WelcomeActivity.java, line(s) 251,464,523,142,225,498,503,508,513,518,538,178,239,261,285,378,399,421,491,531 com/seetong/app/seetong/ui/WifiEtcUI_4g_DoubleCard.java, line(s) 162,477,768,776,133,138,151,157,178,207,286,429,443,461,466,483,546,548,554,571,573,624,654,673,701,713,751,806 com/seetong/app/seetong/ui/WifiEtcUI_STEP0.java, line(s) 67,242,47,63,80,201,218 com/seetong/app/seetong/ui/WifiEtcUI_STEP1.java, line(s) 181,466,517,535,544,551,610,633,269,329,592,596,601 com/seetong/app/seetong/ui/WifiEtcUI_STEP2.java, line(s) 150,168,325,79,247,265,273,283,288,292,341 com/seetong/app/seetong/ui/WifiEtcUI_STEP2_3in1.java, line(s) 317,394,241,260,392 com/seetong/app/seetong/ui/WifiEtcUI_STEP2_Lan.java, line(s) 551,569,90,307,388,251,281,287,328,384,635,642 com/seetong/app/seetong/ui/WifiEtcUI_STEP3.java, line(s) 156,164,258,117,129,225,232,238,254 com/seetong/app/seetong/ui/WifiEtcUI_STEP3_FourG.java, line(s) 224,280,287,376,487,587,595,237,290,368,432,442,447,463,467,470,482,508,518,567,612 com/seetong/app/seetong/ui/WifiEtcUI_STEP3_SearchUDP.java, line(s) 200,307,315,403,165 com/seetong/app/seetong/ui/WifiEtcUI_STEP4.java, line(s) 165,108,193,205,210 com/seetong/app/seetong/ui/WifiEtcUI_STEP4_WireDevModifyAlias.java, line(s) 123 com/seetong/app/seetong/ui/WifiEtc_Tool.java, line(s) 37,67,80,31,58,61,63,83 com/seetong/app/seetong/ui/WifiPlayDeviceUI.java, line(s) 149,173,177 com/seetong/app/seetong/ui/adapter/AbsTsaAdapter.java, line(s) 138 com/seetong/app/seetong/ui/adapter/NormalGridViewAdapter.java, line(s) 357 com/seetong/app/seetong/ui/adapter/SmallGridViewAdapter.java, line(s) 340 com/seetong/app/seetong/ui/aid/AlarmListAdapter.java, line(s) 182,84,188,217,222 com/seetong/app/seetong/ui/aid/CalendarView.java, line(s) 136,145,179,451,589,596,404,427 com/seetong/app/seetong/ui/aid/LandscapePhysicalZoomView.java, line(s) 63,82 com/seetong/app/seetong/ui/aid/ModifyAliasDevListAdapter.java, line(s) 122,139 com/seetong/app/seetong/ui/aid/TDCodeOnClickListener.java, line(s) 164,135 com/seetong/app/seetong/ui/aid/WheelControl.java, line(s) 96,103,129,133 com/seetong/app/seetong/ui/aid/WifiListAdapter.java, line(s) 139 com/seetong/app/seetong/ui/aid/WifiListAdapter_Lan.java, line(s) 134 com/seetong/app/seetong/ui/aid/WifiListAdapter_Setting.java, line(s) 108 com/seetong/app/seetong/ui/aid/ZoomBarScaleView.java, line(s) 58 com/seetong/app/seetong/ui/aid/ZoomSeekBar.java, line(s) 64,74 com/seetong/app/seetong/ui/cache/CloudStorage.java, line(s) 47,52,56,58 com/seetong/app/seetong/ui/ext/ArcProgress.java, line(s) 174 com/seetong/app/seetong/ui/ext/DatetimeView.java, line(s) 1090 com/seetong/app/seetong/ui/ext/DatetimeViewForRecordSet.java, line(s) 1042 com/seetong/app/seetong/ui/ext/DoubleTimeLineView.java, line(s) 537,541,759,473,477,507,510,679,696,702,708,958,966 com/seetong/app/seetong/ui/ext/MyTipDialog.java, line(s) 52,207,257,288,315,356,402,489 com/seetong/app/seetong/ui/ext/OnFastClickListener.java, line(s) 26 com/seetong/app/seetong/ui/ext/OnMultiClickListener.java, line(s) 20 com/seetong/app/seetong/ui/ext/TimeLine.java, line(s) 531,535,751,464,468,501,504,671,688,694,700,921,929 com/seetong/app/seetong/ui/face/FaceSceneSet.java, line(s) 442,545,824 com/seetong/app/seetong/ui/face/FaceSet.java, line(s) 189,279,353 com/seetong/app/seetong/ui/facecatcher/CameraPreview.java, line(s) 112,222,251,97,50,52,88,134,185,212 com/seetong/app/seetong/ui/facecatcher/CircleCameraLayout.java, line(s) 152,153,162 com/seetong/app/seetong/ui/facecatcher/FaceCaptureActivity.java, line(s) 132,144,150,182,152,160,216,52,56,80,92,101,211,219,231,233 com/seetong/app/seetong/ui/facecatcher/FaceHelper.java, line(s) 24,37,48,60,70,76,82,18,30,35,42,43,46 com/seetong/app/seetong/ui/facecatcher/FaceUploadActivity.java, line(s) 262,165,209,218,242,249,256,264,162,204,221,275,316,332,349,361,494 com/seetong/app/seetong/ui/facecatcher/ToolsFile.java, line(s) 175 com/seetong/app/seetong/ui/setting/QueryDeviceUsers.java, line(s) 95,179,186 com/seetong/app/seetong/ui/setting/TransferDevice.java, line(s) 101,157,178 com/seetong/app/seetong/ui/userinfo/WithdrawH5.java, line(s) 115,121,126,153,162 com/seetong/app/seetong/ui/utils/ActivityUtil.java, line(s) 233,405,94,129,149,177,191,224,320,524 com/seetong/app/seetong/ui/utils/AndroidJsUtil.java, line(s) 140,148,155,167,175,181,227,228,229,235,254,279,295,312,319,330,347,353,365,389,226 com/seetong/app/seetong/ui/utils/DataCheckUtil.java, line(s) 52,56,63,67,71,78,81 com/seetong/app/seetong/ui/utils/DevInfoUtil.java, line(s) 40 com/seetong/app/seetong/ui/utils/InfoUploadDevice.java, line(s) 84,109,143,177,211,367,382 com/seetong/app/seetong/ui/utils/LanguageUtil.java, line(s) 69,98,102 com/seetong/app/seetong/ui/utils/MarketUtils.java, line(s) 79,83,98,101,110,112,129,131 com/seetong/app/seetong/ui/view/CustomItemDecoration.java, line(s) 27 com/seetong/app/seetong/ui/view/NoScrollViewPager.java, line(s) 31,40 com/seetong/app/seetong/wifi/AccessPoint.java, line(s) 49 com/seetong/app/seetong/wifi/WifiAdmin.java, line(s) 70,75,50,89,111,121,195,229,237,108,210,213 com/seetong/app/seetong/wifi/WifiTools.java, line(s) 60,94,126 com/seetong/app/seetong/wxapi/WXEntryActivity.java, line(s) 124,56,67,89,93,103,115,132 com/seetong/cloud/tuya/PlayerDeviceTuya.java, line(s) 222,240,264,276,293,309,456,501,502,557,564,230,471,485,547,236,417,423,433,492,496,512,523,528 com/seetong/cloud/tuya/ZoomDragImageView.java, line(s) 63,75,161 com/seetong/cloud/tuya/utils/TuyaSDK.java, line(s) 37,49,54,78,108,114,35,60,64,68,71,85,90,93,98,105,119 com/seetong/lib_base/view/easyfloat/FloatingMagnetView.java, line(s) 113 com/seetong/nvr/ui/LogQueryActivity.java, line(s) 63 com/seetong/service/MainReceiver.java, line(s) 30,36,44,48,50 com/seetong/service/MessageReceiver_FCM.java, line(s) 13,15,20,26 com/seetong/service/MessageReceiver_HuaWei.java, line(s) 26,12,20 com/seetong/service/MessageReceiver_Vivo.java, line(s) 12 com/seetong/service/MessageReceiver_XiaoMi.java, line(s) 21,37,45,58,62,68 com/seetong/service/MyHonorMsgService.java, line(s) 13 com/stool/baidutts/control/MySyntherizer.java, line(s) 69,140 com/stool/baidutts/listener/FileSaveListener.java, line(s) 34,52,94,102,105 com/stool/baidutts/listener/MessageListener.java, line(s) 47,49 com/stool/baidutts/listener/UiMessageListener.java, line(s) 44 com/stool/baidutts/util/OfflineResource.java, line(s) 50 com/stool/resample/vavi/sound/pcm/resampling/ssrc/SSRC.java, line(s) 55,247,248,249,250,251,252,253,254,255,256,257,258,259,260,261,262,263,264,265,266,267,268,289,293,296 com/stool/utils/LogUtil.java, line(s) 26,59,44,80,123,129,131,32,66,20,52,38,73 com/stool/utils/SharePreferenceOldUtil.java, line(s) 30,42 com/stool/zxing/camera/AutoFocusCallback.java, line(s) 26 com/stool/zxing/camera/CameraConfigurationManager.java, line(s) 38,41,46,51,82,125,142,190,201 com/stool/zxing/camera/CameraManager.java, line(s) 162 com/stool/zxing/camera/FlashlightManager.java, line(s) 18,20,60,71,80,83,86 com/stool/zxing/camera/PlanarYUVLuminanceSource.java, line(s) 22 com/stool/zxing/camera/PreviewCallback.java, line(s) 36 com/stool/zxing/decode/CaptureActivity.java, line(s) 203,394,447,470,372,374,379,391,438,450,461 com/stool/zxing/decode/CaptureActivityHandler.java, line(s) 54,60,66,70 com/stool/zxing/decode/DecodeHandler.java, line(s) 65 com/stool/zxing/decode/H5CaptureActivity.java, line(s) 159,327,374,397,305,307,312,324,369,377,388 com/stool/zxing/decode/H5CaptureActivityHandler.java, line(s) 52,58,64,68 com/stool/zxing/decode/H5DecodeHandler.java, line(s) 65 com/stool/zxing/encode/QRCodeUtil.java, line(s) 40 com/therouter/TheRouterKt.java, line(s) 46 com/thoughtworks/xstream/core/JVM.java, line(s) 234,235,236,237,238,239,240,241,242,243,244,245,246,247,248,249,250,251,252,254,255,256,257,258,259,260,261,262,263,264,265,266,267,268,269,270,271,272 com/xuexiang/xui/XUI.java, line(s) 47,51 com/xuexiang/xui/logs/LogcatLogger.java, line(s) 59,68,62,56,74,65,71 com/xuexiang/xui/utils/SnackbarUtils.java, line(s) 190,293,303,308,325,330,395 com/xuexiang/xui/utils/SpanUtils.java, line(s) 1011,1024 com/xuexiang/xui/widget/banner/widget/banner/base/BaseBanner.java, line(s) 467,476,568,575 com/xuexiang/xui/widget/dialog/bottomsheet/BottomSheet.java, line(s) 140 com/xuexiang/xui/widget/dialog/materialdialog/MaterialDialog.java, line(s) 621 com/xuexiang/xui/widget/dialog/materialdialog/internal/MDTintHelper.java, line(s) 144 com/xuexiang/xui/widget/imageview/edit/ImageFilterView.java, line(s) 91 com/xuexiang/xui/widget/imageview/edit/PhotoEditorView.java, line(s) 76,97 com/xuexiang/xui/widget/imageview/edit/ScaleGestureDetector.java, line(s) 211 com/xuexiang/xui/widget/imageview/nine/NineGridImageView.java, line(s) 784 com/xuexiang/xui/widget/imageview/photoview/PhotoViewAttacher.java, line(s) 333,355,390,791,826,843,62,297,485 com/xuexiang/xui/widget/imageview/photoview/gestures/CupcakeGestureDetector.java, line(s) 59 com/xuexiang/xui/widget/imageview/preview/view/BezierBannerView.java, line(s) 342,351,362 com/xuexiang/xui/widget/layout/linkage/LinkageScrollLayout.java, line(s) 62,69,76,82,89,96,189,216,327,398,404,411,425,437,515 com/xuexiang/xui/widget/layout/linkage/PosIndicator.java, line(s) 246,252 com/xuexiang/xui/widget/picker/wheelview/WheelView.java, line(s) 331 com/xuexiang/xui/widget/picker/widget/utils/LunarCalendarUtils.java, line(s) 150 com/xuexiang/xui/widget/popupwindow/easypopup/EasyPopup.java, line(s) 366,409 com/xuexiang/xui/widget/progress/materialprogressbar/BaseProgressLayerDrawable.java, line(s) 74 com/xuexiang/xui/widget/progress/materialprogressbar/MaterialProgressBar.java, line(s) 121,299,472 com/xuexiang/xui/widget/spinner/materialspinner/MaterialSpinner.java, line(s) 228 com/xuexiang/xui/widget/statelayout/StatusLoader.java, line(s) 144,170,176,179,182,203 com/xuexiang/xui/widget/tabbar/TabSegment.java, line(s) 445 com/xuexiang/xui/widget/textview/BadgeView.java, line(s) 162 io/github/inflationx/calligraphy3/ReflectionUtils.java, line(s) 30,32 io/github/inflationx/calligraphy3/TypefaceUtils.java, line(s) 30 io/github/inflationx/viewpump/internal/ReflectionUtils.java, line(s) 47,49 io/realm/BaseRealm.java, line(s) 156,163,440 io/realm/DynamicRealm.java, line(s) 250 io/realm/Realm.java, line(s) 757 io/realm/RealmCache.java, line(s) 258,245,255,391 io/realm/RealmObject.java, line(s) 198,219 io/realm/RealmResults.java, line(s) 655 io/realm/internal/FinalizerRunnable.java, line(s) 20 io/realm/internal/RealmCore.java, line(s) 52,48 io/realm/internal/Util.java, line(s) 60,65,70,76 ipc/android/sdk/com/AbstractDataSerialBase.java, line(s) 132,150 ipc/android/sdk/com/NetSDK_IOTInfo.java, line(s) 55 ipc/android/sdk/com/NetSDK_IPC_ENTRY.java, line(s) 34,44,47,52,55,60,63,67,69,74,76,81,83,88,90,95,97,101,103,107,109,114,117,122,125,130,133,137,139,143,145 ipc/android/sdk/com/NetSDK_LightConfig.java, line(s) 74 ipc/android/sdk/com/NetSDK_Media_Capability.java, line(s) 143,163 ipc/android/sdk/com/NetSDK_Media_Capability_Chan.java, line(s) 140,160 ipc/android/sdk/com/NetSDK_RecordConfig.java, line(s) 78 ipc/android/sdk/com/NetSDK_SmartAudioLightAlarmConfig.java, line(s) 71 ipc/android/sdk/com/NetSDK_TimeConfig.java, line(s) 89 ipc/android/sdk/com/NetSDK_TimeZone_DST_Config.java, line(s) 130 ipc/android/sdk/com/NetSDK_UserAccount.java, line(s) 161,181 ipc/android/sdk/impl/FunclibAgent.java, line(s) 471,509,450,459,253 ipc/android/sdk/impl/PlayCtrlAgent.java, line(s) 297,300,363,375,370,58,63,380 net/tsz/afinal/FinalDb.java, line(s) 400,220,159 net/tsz/afinal/bitmap/core/DiskCache.java, line(s) 198,334,382,453,124,128,132,141,146,151,156,164,169,173,177,181,192,195,346,351,357,368,375,378,415,425,434,439 net/tsz/afinal/bitmap/download/SimpleDownloader.java, line(s) 30 net/tsz/afinal/core/AsyncTask.java, line(s) 178 net/tsz/afinal/exception/ViewException.java, line(s) 15 net/tsz/afinal/utils/Utils.java, line(s) 43 org/android/spdy/NetTimeGaurd.java, line(s) 32,42 org/android/spdy/ProtectedPointerTest.java, line(s) 14,21,39 org/android/spdy/spduLog.java, line(s) 12,54,26,19,33,40,47 org/greenrobot/eventbus/Logger.java, line(s) 32,37
信息 此应用程序将数据复制到剪贴板。敏感数据不应复制到剪贴板,因为其他应用程序可以访问它
此应用程序将数据复制到剪贴板。敏感数据不应复制到剪贴板,因为其他应用程序可以访问它 https://github.com/MobSF/owasp-mstg/blob/master/Document/0x04b-Mobile-App-Security-Testing.md#clipboard Files: com/seetong/app/seetong/ui/MainActivity2.java, line(s) 11,420 com/seetong/app/seetong/ui/ShareDeviceLinkActivity.java, line(s) 4,196 com/seetong/app/seetong/ui/ShareDeviceLinkAddActivity.java, line(s) 4,209
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (wap.cmpassport.com) 通信。
{'ip': '42.123.76.65', 'country_short': 'CN', 'country_long': '中国', 'region': '广东', 'city': '广州', 'latitude': '23.127361', 'longitude': '113.264572'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (wx.tenpay.com) 通信。
{'ip': '122.9.36.202', 'country_short': 'CN', 'country_long': '中国', 'region': '上海', 'city': '上海', 'latitude': '31.224333', 'longitude': '121.468948'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (sy.cl2m.cn) 通信。
{'ip': '42.123.76.65', 'country_short': 'CN', 'country_long': '中国', 'region': '上海', 'city': '上海', 'latitude': '31.224333', 'longitude': '121.468948'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (www.cmpassport.com) 通信。
{'ip': '122.9.36.202', 'country_short': 'CN', 'country_long': '中国', 'region': '安徽', 'city': '合肥', 'latitude': '31.863815', 'longitude': '117.280830'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (auth.wosms.cn) 通信。
{'ip': '122.9.36.202', 'country_short': 'CN', 'country_long': '中国', 'region': '北京', 'city': '北京', 'latitude': '39.907501', 'longitude': '116.397102'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (e.189.cn) 通信。
{'ip': '122.9.36.202', 'country_short': 'CN', 'country_long': '中国', 'region': '北京', 'city': '北京', 'latitude': '39.907501', 'longitude': '116.397102'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (fs.cl2009.com) 通信。
{'ip': '42.123.76.65', 'country_short': 'CN', 'country_long': '中国', 'region': '上海', 'city': '上海', 'latitude': '31.224333', 'longitude': '121.468948'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (app-apitest.seetong.com) 通信。
{'ip': '114.116.200.128', 'country_short': 'CN', 'country_long': '中国', 'region': '北京', 'city': '北京', 'latitude': '39.907501', 'longitude': '116.397102'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (h5.seetong.com) 通信。
{'ip': '122.9.36.202', 'country_short': 'CN', 'country_long': '中国', 'region': '北京', 'city': '北京', 'latitude': '39.907501', 'longitude': '116.397102'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (app.help.seetong.com) 通信。
{'ip': '122.9.36.202', 'country_short': 'CN', 'country_long': '中国', 'region': '北京', 'city': '北京', 'latitude': '39.907501', 'longitude': '116.397102'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (iotpay.seetong.com) 通信。
{'ip': '122.9.36.202', 'country_short': 'CN', 'country_long': '中国', 'region': '北京', 'city': '北京', 'latitude': '39.907501', 'longitude': '116.397102'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (help.seetong.com) 通信。
{'ip': '114.116.200.128', 'country_short': 'CN', 'country_long': '中国', 'region': '北京', 'city': '北京', 'latitude': '39.907501', 'longitude': '116.397102'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (app.seetong.com) 通信。
{'ip': '114.116.197.98', 'country_short': 'CN', 'country_long': '中国', 'region': '北京', 'city': '北京', 'latitude': '39.907501', 'longitude': '116.397102'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (sensors-data.seetong.com) 通信。
{'ip': '116.63.12.11', 'country_short': 'CN', 'country_long': '中国', 'region': '广东', 'city': '广州', 'latitude': '23.127361', 'longitude': '113.264572'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (appgallery.cloud.huawei.com) 通信。
{'ip': '114.116.216.88', 'country_short': 'CN', 'country_long': '中国', 'region': '北京', 'city': '北京', 'latitude': '39.907501', 'longitude': '116.397102'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (h5-test.seetong.com) 通信。
{'ip': '122.9.39.9', 'country_short': 'CN', 'country_long': '中国', 'region': '北京', 'city': '北京', 'latitude': '39.907501', 'longitude': '116.397102'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (www.seetong.com) 通信。
{'ip': '114.116.216.88', 'country_short': 'CN', 'country_long': '中国', 'region': '北京', 'city': '北京', 'latitude': '39.907501', 'longitude': '116.397102'}
关注 应用程序可能与位于OFAC制裁国家 (中国) 的服务器 (sysdk.cl2009.com) 通信。
{'ip': '101.133.104.19', 'country_short': 'CN', 'country_long': '中国', 'region': '上海', 'city': '上海', 'latitude': '31.224333', 'longitude': '121.468948'}