Hard-coded API keys at NordVpn Android App

Disclosed: 2020-03-27 10:50:58 By dantt To nordsecurity

None

Vulnerability Details

Hello NordVpn, **APK Version : 4.6.2** **API'S at res/values/strings.xml** >**Google** >google_api_key = ███ **Stripe** >stripe_publishable_api_key = ██████████ **Referance;** >https://stripe.com/docs/keys ## Impact Cleartext Storage of Sensitive Information

Actions

View on HackerOne

Report Stats

Report ID: 792850
State: Closed
Substate: informative
Upvotes: 10

Hard-coded API keys at NordVpn Android App

Vulnerability Details

Actions

Report Stats

Share this report