Challenges
Search…
Intent Redirection (Access to Protected Components)
The com.insecureshop.WebView2Activity class contains the following code. The code shows that the activity takes intent as extra and passes it to StartActivity.
1
setContentView(2131492899);
2
setSupportActionBar((androidx.appcompat.widget.Toolbar) _$_findCachedViewById(com.insecureshop.C0818R.id.toolbar));
3
setTitle(getString(2131755113));
4
android.content.Intent extraIntent = (android.content.Intent) getIntent().getParcelableExtra("extra_intent");
5
if (extraIntent != null) {
6
startActivity(extraIntent);
7
finish();
8
return;
Copied!
This insecure implementation allows an attacker to bypass Android’s built-in protection and launch any protected components used in the android application.
Last modified 6mo ago
Copy link