Better explanation be found here: Tapatalk Password Exploit Explained - Tapatalk Community Forum
POC app has been removed. Recent tapatalk update does fix this, in a half ass way.
****************
This is a simple proof of concept, this apk retrieves your login credentials in plaintext for Android Forums from the tapatalk demo application. It was not designed for the pro nor the XDA versions, but this method may work on those versions as well. This application has been confirmed to work on MotoDroid (cyanogenmod6) and Droid Eris (various custom roms).
This application does not require root access at all. Just requires demo version of tapatalk, and previously logged into android forums).
Developers please encrypt sensitive data.
**EDIT**
This app does no hard, does nothing other than retrieving your credentials and showing them to you. Does not act maliciously and does not send you login credentials to me or anyone.
POC app has been removed. Recent tapatalk update does fix this, in a half ass way.
****************
This is a simple proof of concept, this apk retrieves your login credentials in plaintext for Android Forums from the tapatalk demo application. It was not designed for the pro nor the XDA versions, but this method may work on those versions as well. This application has been confirmed to work on MotoDroid (cyanogenmod6) and Droid Eris (various custom roms).
This application does not require root access at all. Just requires demo version of tapatalk, and previously logged into android forums).
Developers please encrypt sensitive data.
**EDIT**
This app does no hard, does nothing other than retrieving your credentials and showing them to you. Does not act maliciously and does not send you login credentials to me or anyone.