Google Photos android app’s activity com.google.android.apps.photos.pager.HostPhotoPagerActivity has set to exported with intent filter has file scheme support which means third party app could use this exported activity to pass file from file uri without access validation.
Continue reading “Google Photos : Theft of Database & Arbitrary Files Android Vulnerability”