A vulnerability has been identified in the Elseplus File Recovery App version 4.4.21 for Android, which involves an improper export of application components defined in the AndroidManifest.xml file. This weakness allows for the possibility of local manipulation, potentially exposing sensitive functionality to unauthorized users. Despite the public disclosure of this issue, the vendor has not provided a response, raising concerns about the timely implementation of necessary security measures.
https://securityvulnerability.io/vulner ... -2025-9098