CVE advisoryKnown Exploit
CVE-2019-18426
WhatsApp Desktop and iPhone Vulnerability Allows Cross-Site Scripting
Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.
A vulnerability in WhatsApp Desktop and iPhone versions allows unauthorized access to local files and script execution. Attackers can exploit this by sending a specially crafted message, leading to data exposure and potential system compromise.