CVE-2022-41874
CVE-2022-41874 affects Tauri up to versions prior to 1.0.7 and 1.1.2, where incorrect escaping in file dialog and drag-and-drop paths can partially bypass the fs scope definition. The bypass is limited to neighboring files/subfolders of already allowed paths and depends on the user selecting a pr...