In ES File Explorer have found a serious vulnerability

I discovered one more reason not to install on the smartphone ES File Explorer. French security expert Robert Baptiste He showedAs through the file manager, you can download or delete any user data.

Robert has recorded a short video to demonstrate how easy it is to do it. With the script and command line he downloaded image on your computer from your phone. Vulnerability found in version 4.1.9.5.2 or lower. Current version of the app - 4.1.9.7.4.

To a hacker could use the vulnerability for their own purposes, it should connect to Wi-Fi network of the victim. TechCrunch notes that the hole in the ES File Explorer can take advantage of malicious applications installed on smartphones from the same network.

The developers said they did not know about this problem. App downloaded 500 million times.

In 2016, around the ES File Explorer there was another scandal. The authors added to the file manager advertisements that appear on the lock screen of your smartphone. Because of this, users have eaten the extra traffic, and the device is discharged to 20% faster. Soon, advertising the application removed.