Google Search 路径遍历漏洞

Google Search is an Internet search engine from Google, Inc. The Google Search application suffers from a path traversal vulnerability that stems from the misuse of its uri.getLastPathSegment resulting in a symbolically encoded string that can bypass the path logic to access an unintended directo...

PT-2022-19705 · Google · Android Google Search App

Name of the Vulnerable Software and Affected Versions: Android Google Search app versions prior to 13.41 Description: The issue is caused by the incorrect usage of uri.getLastPathSegment, allowing a symbolic encoded string to bypass path logic and access unintended directories. This could lead to...