Insecure external and internal storage and Insecure Communication, Android Application Penetration Testing Part 7. We recommend reading content provider before starting is useful in cases when an app wants to share data with another app. The Content Provider instance manages access to a structured set of data by handling requests from other applications. All forms of access eventually call Content Resolver, which then calls a concrete method of Content Provider to get access. We must try to check injections through URIs before using drozer tool.”]
Source: https://gbhackers.com/android-application-penetration-part-8/