CVE-2018-12448

Name of the Vulnerable Software and Affected Versions Whale Browser versions prior to 1.3.48.4

Description The issue allows an attacker to display a malicious web page with a fake domain name by exploiting the fact that the browser displays only the title of a web page on the address bar when visiting a non-http page, without showing any URL information.

Recommendations For versions prior to 1.3.48.4, update to version 1.3.48.4 or later to resolve the issue.