Visiting a website that frames malicious content may lead to UI spoofing. The issue was addressed with improved UI handling.
Created webkitgtk tracking bugs for this issue: Affects: fedora-all [bug 2271438]