Deserialization of user-controlled data.Deprecated method or constructor invocation.Depending upon JCenter/Bintray as an artifact repository.Continue statement that does not continue.Container contents are never initialized.Confusing non-overriding of package-private method.Confusing method names because of capitalization.Comparison of narrow type with wide type in loop condition.Cleartext storage of sensitive information using a local database on Android.Cleartext storage of sensitive information using SharedPreferences on Android.Cleartext storage of sensitive information using ‘Properties’ class.Cleartext storage of sensitive information in the Android filesystem.Cleartext storage of sensitive information in cookie.Character passed to StringBuffer or StringBuilder constructor. Cast from abstract to concrete collection.Building a command line with string concatenation.Arbitrary file write during archive extraction (”Zip Slip”).Android fragment injection in PreferenceActivity.
0 Comments
Leave a Reply. |