2.9.3. Android et iOS Mobile . 34 2.9.4. Conclusions de I'audit Indusface .., 36 a. Blind HTML Injection [1].., 36 b. InsecureDirectObjectReferences [2]..., 36 c. Insecure Logging Of The Application [4] 36 d. Application is Vulnerable To Improper Token Management [5] .. . 36 e. ApplicationAccepts Special Character