Insecure Data Protection in Tencent WBlog and MicroBlogPad Android Applications

Insecure Data Protection in Tencent WBlog and MicroBlogPad Android Applications

CVE-2011-4865 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:N

The Tencent WBlog (com.tencent.WBlog) 3.3.1 and MicroBlogPad 1.4.0 applications for Android do not properly protect data, which allows remote attackers to read or modify message drafts and search keywords via a crafted application.

Learn more about our Cis Benchmark Audit For Google Android.