{% load i18n %}<!DOCTYPE 5><html lang="en"><head><meta charset="utf-8"/><meta http-equiv="cache-control" content="max-age=0"/><meta http-equiv="cache-control" content="no-cache"/><meta http-equiv="expires" content="0"/><meta http-equiv="expires" content="Tue, 01 Jan 1980 1:00:00 GMT"/><meta http-equiv="pragma" content="no-cache"/><link rel="stylesheet" href="report.css"/><style type="text/css">@page {
  @top-left {
    content: '{% trans "Confidential" %}';
  }
  @top-right {
    content: "{{ date }} UTC";
  }
  @bottom-center {
    border-top: 1px solid #6B6B6B;
    width: 100%;
    content: "Page " counter(page) " of " counter(pages);
  }
}</style></head><body><section class="new-page"><div class="main-heading">{% trans "App Security Report" %}</div><div class="sub-heading">{% trans "For Internal Purpose" %}</div>{% if data.prepared_for.logo != '' %}<table class="client-logo"><tr><td><img src="{{ data.prepared_for.logo }}" alt="{{ data.prepared_for.name }}"/></td></tr></table>{% else %}<div class="client-name"><h1>{{ data.prepared_for.name }}</h1></div>{% endif %}<table class="app-meta"><tr></tr><td class="app-icon"><img src="{{ file.icon_url }}" alt=""/></td><td class="app-meta-info"><div class="app-title">{{ file.name }}</div><div class="app-package"><span>{{ file.project.package_name }}</span>{% if file.project.platform == 0 %}<img src="data:image/svg+xml;base64,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" alt="{{file.project.get_platform_display}}"/>{% elif file.project.platform == 1 %}<img src="data:image/svg+xml;base64,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" alt="{{file.project.get_platform_display}}"/>{% elif file.project.platform == 2 %}<img src="data:image/svg+xml;base64,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" alt="{{file.project.get_platform_display}}"/>{% endif %}</div><div class="app-version">{{ file.version }}</div>{% if file.fmd.name != '' %}<div class="app-metadataname">{{ file.fmd.name }}</div>{% endif %}</td></table><table class="authors {% if not data.show_copyright %}authors-extended{% endif %}"><tr>{% if not data.prepared_by.hide and not data.powered_by.hide %}<td class="author author-left"><div class="author-heading">{% trans "Prepared by" %}</div>{% if data.prepared_by.logo != '' %}<table class="author-logo"><tr><td><img src="{{ data.prepared_by.logo }}" alt="{{ data.prepared_by.name }}"/></td></tr></table>{% else %}<div class="author-name"><h3>{{ data.prepared_by.name }}</h3></div>{% endif %}</td><td class="author author-right"><div class="author-heading">{% trans "Powered by" %}</div>{% if data.powered_by.logo != '' %}<table class="author-logo"><tr><td><img src="{{ data.powered_by.logo }}" alt="{{ data.powered_by.name }}"/></td></tr></table>{% else %}<div class="author-name"><h3>{{ data.powered_by.name }}</h3></div>{% endif %}</td>{% elif not data.prepared_by.hide and data.powered_by.hide %}<td class="author author-center"><div class="author-heading">{% trans "Prepared by" %}</div>{% if data.prepared_by.logo != '' %}<table class="author-logo"><tr><td><img src="{{ data.prepared_by.logo }}" alt="{{ data.prepared_by.name }}"/></td></tr></table>{% else %}<div class="author-name"><h3>{{ data.prepared_by.name }}</h3></div>{% endif %}</td>{% elif data.prepared_by.hide and not data.powered_by.hide %}<td class="author author-center"><div class="author-heading">{% trans "Powered by" %}</div>{% if data.powered_by.logo != '' %}<table class="author-logo"><tr><td><img src="{{ data.powered_by.logo }}" alt="{{ data.powered_by.name }}"/></td></tr></table>{% else %}<div class="author-name"><h3>{{ data.powered_by.name }}</h3></div>{% endif %}</td>{% endif %}</tr></table><div class="doc-description">{% if data.show_copyright %}<p>{% trans "Portions of this document and the templates used in its production are the property of Appknox" %}{% if data.partner and data.partner.name %}{% trans " and " %}{{ data.partner.name }}{% trans "," %}{% endif %}{% trans " and cannot be copied without permission." %}</p>{% endif %}<p>{% trans "While precautions have been taken in the preparation of this document, the publisher and the author(s) assume no responsibility for errors, omissions, or for damages resulting from the use of the information contained herein. Use of " %}{% if data.show_copyright %}{% trans "Appknox" %}{% if data.partner and data.partner.name %}{% trans " and " %}{{ data.partner.name }}{% endif %}{% endif %}{% trans " services does not guarantee the security of a system, or that intrusions will not occur." %}</p></div></section><section class="new-page"><div><h5 class="heading-container">{% trans "Application Details" %}</h5></div><div><table class="app-details"><tbody><tr><td>{% trans "Application Name" %}</td><td>{{file.name}}
{% if file.fmd.name != '' %}<br>{{ file.fmd.name }}
{% endif %}</td></tr><tr><td>{% trans "Platform" %}</td><td>{{file.project.get_platform_display}}</td></tr><tr><td>{% trans "Application Namespace" %}</td><td>{{file.project.package_name}}</td></tr><tr><td>{% trans "Version" %}</td><td>{{file.version}}</td></tr><tr><td>{% trans "Audit Date" %}</td><td>{{ date }}</td></tr><tr><td>{% trans "Application SHA1 Hash" %}</td><td>{{file.sha1hash}}</td></tr><tr><td>{% trans "Application MD5 Hash" %}</td><td>{{file.md5hash}}</td></tr></tbody></table></div></section><section class="new-page"><div><h3 class="heading-container">{% trans "Table of Contents" %}</h3></div><div><table class="content-table"><tbody><tr class="main-table-heading"><td><a href="#report-summary">{% trans "Report Summary" %}</a></td></tr><tr class="sub-table-heading"><td><a href="#audit-summary">{% trans "Audit Summary" %}</a></td></tr><tr class="sub-table-heading"><td><a href="#security-rating">{% if data.show_copyright %}{% trans "Appknox " %}{% endif %}{% trans "Security Rating" %}</a></td></tr>{% for analysis in file.sorted_analyses %}
{% if analysis.computed_risk > RiskEnum.PASSED %}<tr class="main-table-heading"><td><a href="#{{ analysis.id }}">{{ analysis.vulnerability.name }}</a></td></tr>{% if analysis.vulnerability.non_compliant %}<tr class="sub-table-heading"><td><a href="#{{ analysis.id }}{{ forloop.counter }}non-compliant">{% trans "Noncompliant Code Example" %}</a></td></tr>{% endif %}
{% if analysis.vulnerability.compliant %}<tr class="sub-table-heading"><td><a href="#{{ analysis.id }}{{ forloop.counter }}compliant">{% trans "Compliant Solution" %}</a></td></tr>{% endif %}
{% if analysis.vulnerability.business_implication %}<tr class="sub-table-heading"><td><a href="#{{ analysis.id }}{{ forloop.counter }}business-implication">{% trans "Business Implication" %}</a></td></tr>{% endif %}
{% if analysis.vulnerability.related_to %}<tr class="sub-table-heading"><td><a href="#{{ analysis.id }}{{ forloop.counter }}related-to">{% trans "Related Vulnerabilities" %}</a></td></tr>{% endif %}
{% endif %}
{% endfor %}</tbody></table></div></section><section class="new-page"><div><a id="report-summary"></a><h3 class="heading-container">{% trans "Report Summary" %}</h3></div><div><p>{% if data.show_copyright %}{% if data.partner and data.partner.name %}{{ data.partner.name }}{% trans ", powered by " %}{% endif %}{% trans "Appknox" %}{% if data.partner and data.partner.name %}{% trans "," %}{% endif %}{% trans " conducted a security assessment of the mobile application. " %}{% endif %}{% trans "This report contains all the findings during the automated and manual auditing processes. It also contains the process of discovering those vulnerabilities in the first place, and ways to remediate those issues." %}</p></div><section><div><a id="audit-summary"></a><h5 class="sub-heading-container">{% trans "Audit Summary" %}</h5></div><div><table class="audit-table"><tbody>{% for analysis in file.sorted_analyses %}
{% if not analysis.is_ignored %}<tr class="{% if analysis.is_ignored %}disabled{% endif %}"><td><h5>{{ analysis.vulnerability.name }}
{% for type in analysis.vulnerability.get_types_display %}<span class="scan-tag">{{type}}</span>{% endfor %}</h5>{{ analysis.vulnerability.description | safe  }}</td><td class="risk-type-container">{% if analysis.show_cvss %}<div class="cvss-text color-{{ analysis.get_computed_risk_display|lower }}"><h1>{{analysis.cvss_base}}</h1></div>{% endif %}<div><div class="risk-type fill-{{ analysis.get_computed_risk_display|lower }}">{{ analysis.get_computed_risk_display }} Risk</div>{% if analysis.overridden_risk %}<div class="risk-type-icon"><img src="data:image/svg+xml;base64,PHN2ZyB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciIHZlcnNpb249IjEuMSIgeD0iMHB4IiB5PSIwcHgiIHZpZXdCb3g9IjAgMCAzOTkuMTQgMzk5LjE0IiBzdHlsZT0iZW5hYmxlLWJhY2tncm91bmQ6bmV3IDAgMCAzOTkuMTQgMzk5LjE0OyIgeG1sOnNwYWNlPSJwcmVzZXJ2ZSIgd2lkdGg9IjE2cHgiIGhlaWdodD0iMTZweCI+ICAgIDxnPiAgICAgICAgPGNpcmNsZSBjeD0iMTA4Ljc1IiBjeT0iNzIuOTgiIHI9IjYwIiBmaWxsPSIjYzdjN2M3Ii8+ICAgICAgICA8cGF0aCBkPSJNMTkyLjM4OSwyMDIuMjM4Yy0xOS45NDYtMjMuOTg0LTUwLjAwNi0zOS4yNTgtODMuNjM5LTM5LjI1OEM0OC42ODksMTYyLjk4LDAsMjExLjY2OSwwLDI3MS43M2gxMjIuODk3TDE5Mi4zODksMjAyLjIzOHoiIGZpbGw9IiNjN2M3YzciLz4gICAgICAgIDxwYXRoIGQ9Ik0zMDAuMzc2LDEzNi42NzZsMzguNjYxLTM4LjY2MWw2MC4xMDQsNjAuMTA0bC0zOC42NjEsMzguNjYxTDMwMC4zNzYsMTM2LjY3NnoiIGZpbGw9IiNjN2M3YzciLz4gICAgICAgIDxwYXRoIGQ9Ik0xMTAuOTk4LDM4Ni4xNmw2OC40NjQtMTkuOTg2bC00OC40NzgtNDguNDc3TDExMC45OTgsMzg2LjE2eiIgZmlsbD0iI2M3YzdjNyIvPiAgICAgICAgPHBhdGggZD0iTTE0Ni4zODEsMjkwLjY3bDEzMi43ODItMTMyLjc4Mmw2MC4xMDQsNjAuMTA0TDIwNi40ODUsMzUwLjc3NEwxNDYuMzgxLDI5MC42N3oiIGZpbGw9IiNjN2M3YzciLz4gICAgPC9nPjwvc3ZnPg=="/></div>{% endif %}</div></td></tr>{% endif %}
{% endfor %}
{% if file.guaranteed_profile.rps.show_ignored_analyses %}
{% for analysis in file.sorted_analyses %}
{% if analysis.is_ignored %}<tr class="{% if analysis.is_ignored %}disabled{% endif %}"><td><h5>{{ analysis.vulnerability.name }}
{% for type in analysis.vulnerability.get_types_display %}<span class="scan-tag">{{type}}</span>{% endfor %}</h5>{{ analysis.vulnerability.description | safe  }}</td><td class="risk-type-container">{% if analysis.is_ignored %}<label class="audit-ignored-label">{% trans "Ignored" %}</label>{% endif %}
{% if analysis.show_cvss %}<div class="cvss-text color-{{ analysis.get_computed_risk_display|lower }}"><h1>{{analysis.cvss_base}}</h1></div>{% endif %}<div><div class="risk-type fill-{{ analysis.get_computed_risk_display|lower }}">{{ analysis.get_computed_risk_display }} Risk</div>{% if analysis.overridden_risk %}<div class="risk-type-icon"><img src="data:image/svg+xml;base64,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"/></div>{% endif %}</div></td></tr>{% endif %}
{% endfor %}
{% endif %}</tbody></table></div></section><section class="new-page"><table class="audit-table sub-table"><tbody><tr><td>{% trans "Priority Level" %}</td><td>{% trans "Number of failed test cases" %}</td></tr><tr><td>{% trans "Critical Risk" %}</td><td>{{ file.risk_count_critical }}</td></tr><tr><td>{% trans "High Risk" %}</td><td>{{ file.risk_count_high }}</td></tr><tr><td>{% trans "Medium Risk" %}</td><td>{{ file.risk_count_medium }}</td></tr><tr><td>{% trans "Low Risk" %}</td><td>{{ file.risk_count_low }}</td></tr></tbody></table></section><section><div><a id="security-rating"></a><h5 class="sub-heading-container">{% if data.show_copyright %}{% trans "Appknox " %}{% endif %}{% trans "Security Rating" %}</h5></div><div><img width="316" height="75" src="{{ chart_url }}"/><p>{% if data.show_copyright %}{% trans "Appknox " %}{% endif %}{% trans "Security Rating:" %} {{ rating }}% {% trans "Unsecured" %}</p></div></section></section>{% for analysis in file.sorted_analyses %}
{% if analysis.computed_risk > RiskEnum.PASSED and not analysis.is_ignored  %}<section class="new-page"><div><a id="{{ analysis.id }}"></a><h3 class="vulnerability-heading">{{ analysis.vulnerability.name }}</h3></div><section class="description"><div>{{ analysis.vulnerability.intro | safe }}</div><table><tbody><tr><td class="risk-tag-container"><div><div class="risk-tag fill-{{ analysis.get_computed_risk_display|lower }}">{% trans "Risk Rating" %} : {{ analysis.get_computed_risk_display }}</div>{% if analysis.overridden_risk %}<div class="risk-tag-icon"><img src="data:image/svg+xml;base64,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"/></div>{% endif %}</div></td><td class="scan-container">{% for type in analysis.vulnerability.get_types_display %}<span class="scan-tag">{{type}}</span>{% endfor %}</td></tr></tbody></table></section><section><div><h5 class="bold-black-text">{% trans "Regulatory" %}</h5></div><table class="regulatory-table"><tbody>{% if analysis.show_cvss %}<tr><td>CVSSv3</td><td>{{analysis.cvss_base}}</td></tr><tr><td>CVSS Metrics</td><td><ul>{% for metric in analysis.cvss_metrics_humanized %}<li><span class="metric-key">{{ metric.key }}</span><span class="metric-value">{{ metric.value }}</span></li>{% endfor %}</ul></td></tr>{% endif %}
{% if analysis.owasp_categories %}<tr><td>OWASP</td><td><ul>{% for metric in analysis.owasp_categories %}<li><span class="metric-key">{{ metric.code }}</span><span class="metric-value">{{ metric.title }}</span></li>{% endfor %}</ul></td></tr>{% endif %}</tbody></table>{% if analysis.pcidss_categories %}<div class="pcidss-heading">PCI-DSS</div>{% for metric in analysis.pcidss_categories %}<table class="pcidss-table"><tbody><tr><td class="metric-key">{{ metric.code }}</td><td class="metric-value"><div>{{ metric.title }}</div><div class="metric-description">{% trans "Description" %}</div><div>{{ metric.description }}</div></td></tr></tbody></table>{% endfor %}
{% endif %}</section><section class="assessment"><div class="analysis-type"><h5>{% trans "Risk Assessment" %}</h5></div><div><p>{{ analysis.vulnerability.description | safe }}</p>{% for finding in analysis.findings %}
{% if finding.title %}<h5 class="wrap-content">{{ finding.title | escape }}</h5>{% endif %}<pre><code>{{ finding.description | escape }}</code></pre>{% endfor %}</div></section>{% if analysis.vulnerability.non_compliant %}<section class="non-compliant"><div class="analysis-type"><a id="{{ analysis.id }}{{ forloop.counter }}non-compliant"></a><h5>{% trans "Noncompliant Code Example" %}</h5></div><div>{{ analysis.vulnerability.non_compliant | safe }}</div></section>{% endif %}
{% if analysis.vulnerability.compliant %}<section class="compliant"><div class="analysis-type"><a id="{{ analysis.id }}{{ forloop.counter }}compliant"></a><h5>{% trans "Compliant Solution" %}</h5></div><div>{{ analysis.vulnerability.compliant | safe }}</div></section>{% endif %}
{% if analysis.vulnerability.business_implication %}<section class="implications"><div class="analysis-type"><a id="{{ analysis.id }}{{ forloop.counter }}business-implication"></a><h5>{% trans "Business Implication" %}</h5></div><div>{{ analysis.vulnerability.business_implication | safe }}</div></section>{% endif %}
{% if analysis.vulnerability.related_to %}<section class="related"><div class="analysis-type"><a id="{{ analysis.id }}{{ forloop.counter }}related-to"></a><h5>{% trans "Related Vulnerabilities" %}</h5></div><div>{{ analysis.vulnerability.related_to | safe }}</div></section>{% endif %}</section>{% endif %}
{% endfor %}
{% if file.guaranteed_profile.rps.show_ignored_analyses and ignored_analyses_count %}<section class="new-page"><div class="ignored-analyses"><a id="ignored-analyses"></a><h3 class="heading-container">{% trans "Ignored Analyses" %}</h3></div>{% for analysis in file.sorted_analyses %}
{% if analysis.computed_risk > RiskEnum.PASSED and analysis.is_ignored  %}<section><div><a id="{{ analysis.id }}"></a><h3 class="vulnerability-heading">{{ analysis.vulnerability.name }}</h3></div><section class="description"><div>{{ analysis.vulnerability.intro | safe }}</div><table><tbody><tr><td class="risk-tag-container"><div><div class="risk-tag fill-{{ analysis.get_computed_risk_display|lower }}">{% trans "Risk Rating" %} : {{ analysis.get_computed_risk_display }}</div>{% if analysis.overridden_risk %}<div class="risk-tag-icon"><img src="data:image/svg+xml;base64,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"/></div>{% endif %}</div></td><td class="scan-container">{% for type in analysis.vulnerability.get_types_display %}<span class="scan-tag">{{type}}</span>{% endfor %}</td></tr></tbody></table></section><section><div><h5 class="bold-black-text">{% trans "Regulatory" %}</h5></div><table class="regulatory-table"><tbody>{% if analysis.show_cvss %}<tr><td>CVSSv3</td><td>{{analysis.cvss_base}}</td></tr><tr><td>CVSS Metrics</td><td><ul>{% for metric in analysis.cvss_metrics_humanized %}<li><span class="metric-key">{{ metric.key }}</span><span class="metric-value">{{ metric.value }}</span></li>{% endfor %}</ul></td></tr>{% endif %}
{% if analysis.owasp_categories %}<tr><td>OWASP</td><td><ul>{% for metric in analysis.owasp_categories %}<li><span class="metric-key">{{ metric.code }}</span><span class="metric-value">{{ metric.title }}</span></li>{% endfor %}</ul></td></tr>{% endif %}</tbody></table>{% if analysis.pcidss_categories %}<div class="pcidss-heading">PCI-DSS</div>{% for metric in analysis.pcidss_categories %}<table class="pcidss-table"><tbody><tr><td class="metric-key">{{ metric.code }}</td><td class="metric-value"><div>{{ metric.title }}</div><div class="metric-description">{% trans "Description" %}</div><div>{{ metric.description }}</div></td></tr></tbody></table>{% endfor %}
{% endif %}</section><section class="assessment"><div class="analysis-type"><h5>{% trans "Risk Assessment" %}</h5></div><div><p>{{ analysis.vulnerability.description | safe }}</p>{% for finding in analysis.findings %}
{% if finding.title %}<h5 class="wrap-content">{{ finding.title | escape }}</h5>{% endif %}<pre><code>{{ finding.description | escape }}</code></pre>{% endfor %}</div></section>{% if analysis.vulnerability.non_compliant %}<section class="non-compliant"><div class="analysis-type"><a id="{{ analysis.id }}{{ forloop.counter }}non-compliant"></a><h5>{% trans "Noncompliant Code Example" %}</h5></div><div>{{ analysis.vulnerability.non_compliant | safe }}</div></section>{% endif %}
{% if analysis.vulnerability.compliant %}<section class="compliant"><div class="analysis-type"><a id="{{ analysis.id }}{{ forloop.counter }}compliant"></a><h5>{% trans "Compliant Solution" %}</h5></div><div>{{ analysis.vulnerability.compliant | safe }}</div></section>{% endif %}
{% if analysis.vulnerability.business_implication %}<section class="implications"><div class="analysis-type"><a id="{{ analysis.id }}{{ forloop.counter }}business-implication"></a><h5>{% trans "Business Implication" %}</h5></div><div>{{ analysis.vulnerability.business_implication | safe }}</div></section>{% endif %}
{% if analysis.vulnerability.related_to %}<section class="related"><div class="analysis-type"><a id="{{ analysis.id }}{{ forloop.counter }}related-to"></a><h5>{% trans "Related Vulnerabilities" %}</h5></div><div>{{ analysis.vulnerability.related_to | safe }}</div></section>{% endif %}</section>{% endif %}
{% endfor %}</section>{% endif %}<section class="new-page"><div class="references"><a id="references"></a><h3 class="heading-container">{% trans "References" %}</h3><ol><a target="_blank" href="https://www.owasp.org/index.php/Mobile_Top_10_2016-Top_10"><li>Mobile Top 10 OWASP Categories | 2016</li></a><a target="_blank" href="https://www.owasp.org/index.php/Top_10_2013-Top_10"><li>Web Top 10 OWASP Categories | 2013</li></a></ol></div></section></body></html>