A vulnerability in Watsab that allows deleting messages after being read by the addressee

in a •  6 years ago 

2019_1_8_11_8_17_573.jpg
News reports reported that a gap in the application of Watsab allows the user to delete messages even after being read by the addressee, and despite the passage of more than an hour to send, which is not allowed by the application system in normal cases.

According to the blog "Android Gefi", that the gap detected can be deleted messages read even after a long period of up to a week to send, and presented the steps through which to take advantage of that gap, and came as follows:

1-Go to phone settings and close the Wi-Fi receiver and phone data.

  1. Select Application Settings and choose the mandatory stop for Wattab.

3-Settings Close the automatic time and date setting.

  1. Set the date of the messages to be deleted.

  2. Restart the application.

  3. Long press on the message, choose Delete All.

Authors get paid when people like you upvote their post.
If you enjoyed what you read here, create your account today and start earning FREE STEEM!
Sort Order:  

Interesting. I guess it's a synchronization issue. And maybe the validation is only happening on the phone.