CVE-2019-11928

EPSS 1.0%CWE-79

An input validation issue in WhatsApp Desktop versions prior to v0.3.4932 could have allowed cross-site scripting upon clicking on a link from a specially crafted live location message.

Affected products

Facebook · WhatsApp Desktop

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.whatsapp.com/security/advisories/2020/