The jigbrowser+ application before 1.6.4 for Android does not properly open windows, which allows remote attackers to spoof the address bar via a crafted web site.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| jb+ | jigbrowser+ | 1.6.2 |
| jb+ | jigbrowser+ | 1.0.5 |
| jb+ | jigbrowser+ | 1.5.0 |
| jb+ | jigbrowser+ | 1.5.5 |
| jb+ | jigbrowser+ | 1.1.1 |
| jb+ | jigbrowser+ | * |
| jb+ | jigbrowser+ | 1.6.0 |