Gojek Android App | One-Click Theft of Authentication Token
Author: Sean Pesce
Authentication token will be sent to the following malicious URL:
Vulnerability confirmed in the following version of com.gojek.app:
Resources
Android app:
[Google Play Store]