HI Team,
We found some issues while we performing PT Testing on moodle mobile app and found below issues which are security vulnerable. Can someone from forum give their support in fixing these issues so that we can pay and use your service. Thank you.
ISSUE NAME SOLUTION
Unencrypted database files | Implement database encryption |
Unencrypted shared preferences | SharedPreference
should be encrypted, to do so there are three ways to do so and they
are: 1. Encrypt the whole file with a key. 2. Use the EncryptedSharedPreferences released by Google to encrypt the SharedPreference file, but for this minimum API level should be equal or more than 2 3. Use the third party encryption by the name ‘Secure Preference’. |
Regards,
Mahesh K.