Your app contains an Intent Redirection vulnerability

I was having the same issue “intent redirection your app(s) are vulnerable to intent redirection” and I added exported=”false” in every activity, but still got rejected, then I realized the problem was in one of the payment libraries I was using, all I had to do is update the library and the new app update got live.

my issue was in RazorPay payment gateway, I updated it from 1.6.3 to 1.6.6 (latest)

implementation 'com.razorpay:checkout:1.6.6'

they already mentioned this issue here, check it out https://github.com/razorpay/razorpay-android-sample-app/issues/202

Leave a Comment