Android App Hacking: Hardcoded Credentials
Decompiling an Android app to reveal hardcoded usernames and passwords.
Stored XSS Leads to Plaintext Password Disclosure
Uploading a malicious HTML file to the web application to get XSS and decode a sensitive cookie.