Weekly Bug Crawl by QAwerk: ChatAll for iOS

Weekly Bug Crawl by QAwerk: ChatAll for iOS

ChatAll for iOS

ChatAll is an application that focuses on helping to learn a new language or further develop the second language by providing users with side-by-side translations of their casual conversations. In ChatAll you can organize private chat and group chat, share images files and audio files, update status and build the profile.

We liked the idea of ​​the application, and decided to try it out during our weekly bug crawl. Unfortunately, we found some unpleasant bugs of ChatAll.

During registration, a push notification appears, which allows a user to manipulate other people’s data and steal accounts
Severity:

Critical

Steps to reproduce:
  1. Tap on the Sign-Up button.
  2. Choose the region (for example, Ukraine).
  3. Enter mobile number, for example “0999505670” (this is the data of the user with unverified email) and tap Sign-Up button.
  4. Enter the verification code that came in the notice and taps the Verify button.
  5. Choose Exciting User and tap on the button “No, that’s not me”.
  6. Input new correct data and tap Next at Setup profile page.
  7. Tap ‘Finish’ button.

Environment:

iPhone 5c/ iPhone 6

Actual result:

You’ve stolen someone’s account.

Expected result:

At step 5 the verification code must be sent via SMS, not via the app.

ChatAll app - access to other people’s accounts / Weekly bug crawl by QAwerk
Validation via mobile phone doesn’t work properly
Severity:

Major

Steps to reproduce:
  1. Tap on Signup button.
  2. Choose a region (for example, Ukraine).
  3. Enter mobile number, for example“00000000000000000000”.
  4. Tap on Sign-Up button.

Environment:

iPhone 5c/ iPhone 6

Actual result:

Validation is complete.

Expected result:

Validation should work.

ChatAll app - weak validation / Weekly bug crawl by QAwerk
There is ability to send one backspace to the feedback field
Severity:

Minor

Steps to reproduce:
  1. Go to the More section.
  2. At the message field type 1 backspace.
  3. Tap on the Send button.
  4. Pay attention to the app response.

Environment:

iPhone 5c/ iPhone 6

Actual result:

The message was sent.

Expected result:

There is a message “Please type the longer message.”

ChatAll app - empty message bug / Weekly bug crawl by QAwerk
Incorrect error message after searching a nonexistent user
Severity:

Minor

Steps to reproduce:
  1. Go to the Contacts section.
  2. Type 3 backspaces in Search field.
  3. Pay attention to the search results.

Environment:

iPhone 5c/ iPhone 6

Actual result:

Lines duplicate.

Expected result:

No mistakes in the error message.

ChatAll app - searching a nonexistent user bug / Weekly bug crawl by QAwerk
Account image disappears
Severity:

Trivial

Steps to reproduce:
  1. Go to the More section.
  2. Tap and hold the profile image.

Environment:

iPhone 5c/ iPhone 6

Actual result:

The image disappears.

Expected result:

The image stays in its place.

  • ChatAll app - account image disappearing bug, screen 1 / Weekly bug crawl by QAwerk
  • ChatAll app - account image disappearing bug, screen 2 / Weekly bug crawl by QAwerk

With the increase in the number of applications that require to input personal data, requisites, bank cards and other confidential information, lots of attention is now paid to pay to the security testing process of such applications. Among all testing methods, in this case, the most efficient is manual testing as it helps to reproduce the process of data theft and puts the tester in the role of a hacker. QAwerk team is a real expert in manual security testing and has extensive experience working with various industries, where applications needed a reliable protection.

ChatAll is a free messaging app for people, who don’t have a time for courses. ChatAll is a new favorite of AppStore. The idea looks cool and fresh. However, there are issues in the application that affect its functionality.
Berta, QA

Berta, QA

Need a reliable QA partner?

Hire us