Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In the "Diary with lock" (aka WriteDiary) application 4.72 for Android, neither HTTPS nor other encryption is used for transmitting data, despite the documentation that the product is intended for "a personal journal of ... secrets and feelings," which allows remote attackers to obtain sensitive information by sniffing the network during LoginActivity or NoteActivity execution.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
WriteDiary for Android 安全漏洞
Vulnerability Description
WriteDiary(又名Diary with lock) for Android是一套基于Android平台的加密日记软件。 基于Android平台的WriteDiary 4.72版本中存在安全漏洞,该漏洞源于程序没有对传递的数据使用HTTPS协议或对其进行加密。远程攻击者可通过嗅探网络利用该漏洞获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A