CVE-2025-9098 – “Elseplus File Recovery App Android Component Export Vulnerability”

August 17, 2025

CVE ID : CVE-2025-9098

Published : Aug. 18, 2025, 1:15 a.m. | 56 minutes ago

Description : A vulnerability was determined in Elseplus File Recovery App 4.4.21 on Android. Affected by this issue is some unknown functionality of the file AndroidManifest.xml. The manipulation leads to improper export of android application components. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 5.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-9099 – Acrel Environmental Monitoring Cloud Platform Remote File Upload Vulnerability

Next Article CVE-2025-31714 – Apache HTTP Server Local Privilege Escalation Vulnerability

10 Ways Node.js Development Boosts AI & Real-Time Data (2025-2026 Edition)

Looking to Outsource React.js Development? Here’s What Top Agencies Are Doing Right

Beyond The Hype: What AI Can Really Do For Product Design

BrowserStack launches Chrome extension that bundles 10+ manual web testing tools

How much RAM does your Linux PC really need in 2025?

Have solar at home? Supercharge that investment with this other crucial component

I replaced my MacBook charger with this compact wall unit – and wish I’d done it sooner

5 reasons to switch to an immutable Linux distro today – and which to try first

Sentry Adds Logs Support for Laravel Apps

Sentry Adds Logs Support for Laravel Apps

Efficient Context Management with Laravel’s Remember Functions

Laravel Devtoolbox: Your Swiss Army Knife Artisan CLI

From plateau predictions to buggy rollouts — Bill Gates’ GPT-5 skepticism looks strangely accurate

From plateau predictions to buggy rollouts — Bill Gates’ GPT-5 skepticism looks strangely accurate

We gave OpenAI’s open-source AI a kid’s test — here’s what happened

With GTA 6, next-gen exclusives, and a console comeback on the horizon, Xbox risks sitting on the sidelines — here’s why

CVE-2025-9098 – “Elseplus File Recovery App Android Component Export Vulnerability”

Workday Staff Fall to Social Engineering; Hackers Access Third-Party CRM Platform

Get Ready for the Black Hat USA 2025 CISO Podcast Series from The Cyber Express and Suraksha Catalyst

Microsoft is blocking Google Chrome in the name of family safety — but this time it actually makes sense

Play Ransomware Group Used Windows Zero-Day

I tried Google’s new agentic IDE, and it blows away the popular VS Code – here’s how

CVE-2025-5136 – Tmall Payment Identifier Handler Insecure Randomness Remote Vulnerability

CVE-2025-41648 – IndustrialPI Authentication Bypass Vulnerability

nOAuth Vulnerability Still Affects 9% of Microsoft Entra SaaS Apps Two Years After Discovery

Auto Draft

Pinta 3.0 Released With New Effects and GTK4 Port

CVE-2025-9098 – “Elseplus File Recovery App Android Component Export Vulnerability”

Related Posts