Update processPath for double encoding

See gh-33689

spring-webflux/src/main/java/org/springframework/web/reactive/function/server/PathResourceLookupFunction.java

@@ -148,18 +148,26 @@ class PathResourceLookupFunction implements Function<ServerRequest, Mono<Resourc
 	}
 
 	private static String normalizePath(String path) {
-		if (path.contains("%")) {
+		String result = path;
+		if (result.contains("%")) {
+			result = decode(result);
+			if (result.contains("%")) {
+				result = decode(result);
+			}
+			if (result.contains("../")) {
+				return StringUtils.cleanPath(result);
+			}
+		}
+		return path;
+	}
+
+	private static String decode(String path) {
 		try {
-				path = URLDecoder.decode(path, StandardCharsets.UTF_8);
+			return URLDecoder.decode(path, StandardCharsets.UTF_8);
 		}
 		catch (Exception ex) {
 			return "";
 		}
-			if (path.contains("../")) {
-				path = StringUtils.cleanPath(path);
-			}
-		}
-		return path;
 	}
 
 	private boolean isInvalidPath(String path) {

spring-webflux/src/main/java/org/springframework/web/reactive/resource/ResourceWebHandler.java

@@ -567,18 +567,26 @@ public class ResourceWebHandler implements WebHandler, InitializingBean {
 	}
 
 	private static String normalizePath(String path) {
-		if (path.contains("%")) {
+		String result = path;
+		if (result.contains("%")) {
+			result = decode(result);
+			if (result.contains("%")) {
+				result = decode(result);
+			}
+			if (result.contains("../")) {
+				return StringUtils.cleanPath(result);
+			}
+		}
+		return path;
+	}
+
+	private static String decode(String path) {
 		try {
-				path = URLDecoder.decode(path, StandardCharsets.UTF_8);
+			return URLDecoder.decode(path, StandardCharsets.UTF_8);
 		}
 		catch (Exception ex) {
 			return "";
 		}
-			if (path.contains("../")) {
-				path = StringUtils.cleanPath(path);
-			}
-		}
-		return path;
 	}
 
 	/**

spring-webmvc/src/main/java/org/springframework/web/servlet/function/PathResourceLookupFunction.java

@@ -149,18 +149,26 @@ class PathResourceLookupFunction implements Function<ServerRequest, Optional<Res
 	}
 
 	private static String normalizePath(String path) {
-		if (path.contains("%")) {
+		String result = path;
+		if (result.contains("%")) {
+			result = decode(result);
+			if (result.contains("%")) {
+				result = decode(result);
+			}
+			if (result.contains("../")) {
+				return StringUtils.cleanPath(result);
+			}
+		}
+		return path;
+	}
+
+	private static String decode(String path) {
 		try {
-				path = URLDecoder.decode(path, StandardCharsets.UTF_8);
+			return URLDecoder.decode(path, StandardCharsets.UTF_8);
 		}
 		catch (Exception ex) {
 			return "";
 		}
-			if (path.contains("../")) {
-				path = StringUtils.cleanPath(path);
-			}
-		}
-		return path;
 	}
 
 	private boolean isInvalidPath(String path) {

spring-webmvc/src/main/java/org/springframework/web/servlet/resource/ResourceHttpRequestHandler.java

@@ -726,18 +726,26 @@ public class ResourceHttpRequestHandler extends WebContentGenerator
 	}
 
 	private static String normalizePath(String path) {
-		if (path.contains("%")) {
+		String result = path;
+		if (result.contains("%")) {
+			result = decode(result);
+			if (result.contains("%")) {
+				result = decode(result);
+			}
+			if (result.contains("../")) {
+				return StringUtils.cleanPath(result);
+			}
+		}
+		return path;
+	}
+
+	private static String decode(String path) {
 		try {
-				path = URLDecoder.decode(path, StandardCharsets.UTF_8);
+			return URLDecoder.decode(path, StandardCharsets.UTF_8);
 		}
 		catch (Exception ex) {
 			return "";
 		}
-			if (path.contains("../")) {
-				path = StringUtils.cleanPath(path);
-			}
-		}
-		return path;
 	}
 
 	/**