menu
close_24px

10 Security Vulnerabilities Appknox Found in Perplexity AI's Android App

What we found and why it matters

Perplexity AI's Android app may be trending, but our security analysis uncovered serious flaws,  from weak root detection to clickjacking and hardcoded credentials. 

Want to see the full breakdown?

📥 Download the infographic. Free with email.

Here's what we discovered (and why it should concern you)

Look, we get it. When you're building the next big AI app, security sometimes takes a backseat to features and user experience. 

But here's the thing: we just ran Perplexity AI's Android app through our comprehensive security testing, and what we found might surprise you.

We're talking about vulnerabilities that could let attackers intercept user data on public WiFi, inject malware without touching the APK signature, and even trick users into handing over their credentials through fake UI screens.

What makes these vulnerabilities so dangerous?

🛑
Critical infrastructure gaps

Missing SSL validation and weak root detection create open doors for attackers.

🎭
UI manipulation attacks

StrandHogg and clickjacking vulnerabilities can completely fool users.

🔓
Backend exposure

Hardcoded credentials and CORS issues put API access at risk

🕵️
Reverse engineering risks

Unobfuscated bytecode makes it easy to understand and exploit the app.

What’s inside this infographic?

This infographic highlights:

  • 10 real vulnerabilities across encryption, network config, and code structure
  • Flaws like StrandHogg, Janus, clickjacking, and missing ADB/root detection
  • Misconfigurations that make the app susceptible to malware, data theft, and impersonation
  • How insecure APIs and CORS issues put backend access at risk
  • Why fast-moving apps must still prioritize AppSec basics to protect user trust
  • CVSS scores, risk summaries, and real-world threat potential boiled down into one high-impact visual.

Who’s this infographic for?

This infographic is tailored for leaders, engineers, and teams working in mobile security, product development, and risk management.

✅Chief Information Security Officers (CISOs): Understand how fast-growing AI apps can pose hidden risks and how to audit them effectively.

✅Security professionals: Get a visual breakdown of 10 common but critical vulnerabilities found in trending mobile apps.

✅Developers and DevSecOps teams: Learn how to identify and fix code-level flaws before they become breaches.

✅Compliance and risk managers: See how vulnerabilities impact your risk posture and alignment with standards like OWASP, GDPR, and PCI DSS.

✅Product managers: Understand how AppSec trade-offs during launch cycles can harm brand trust and adoption.

Download the Infographic


AI is moving fast. So are the threats!

We scanned Perplexity AI’s app and found 10 critical flaws. These aren’t hypothetical bugs; they’re risks impacting user data and app integrity.

Learn what went wrong, why it matters, and how to avoid the same mistakes.

Download Now
Download the Infographics