Your app contains an Intent Redirection vulnerability

by

I was having the same issue “intent redirection your app(s) are vulnerable to intent redirection” and I added exported=”false” in every activity, but still got rejected, then I realized the problem was in one of the payment libraries I was using, all I had to do is update the library and the new app update got live.

my issue was in RazorPay payment gateway, I updated it from 1.6.3 to 1.6.6 (latest)

implementation 'com.razorpay:checkout:1.6.6'

they already mentioned this issue here, check it out https://github.com/razorpay/razorpay-android-sample-app/issues/202

More Related Contents:

  1. How to fix unsafe implementation of X509TrustManager in Android app
  2. Webview avoid security alert from google play upon implementation of onReceivedSslError
  3. WebView: how to avoid security alert from Google Play upon implementation of onReceivedSslError
  4. How to determine which dependency causes Google Play OpenSSL warning?
  5. Google Play Security Alert – Your app is using an unsafe implementation of the HostnameVerifier
  6. Android: Removing OpenCV older version will resolve Libpng Vulnerability warning?
  7. What is AAPT (Android Asset Packaging Tool) and how does it work?
  8. Google Play security alert for insecure TrustManager
  9. android Google Play Warning: SSL Error Handler Vulnerability

Leave a Comment