Red Hat Bugzilla – Bug 1270803
anki: Embedded web browser used to display cards is not restricted
Last modified: 2015-10-21 09:48:32 EDT
In anki, cards are formatted using HTML and displayed using a web browser control. The browser is not appropriately restricted against script injections. Attacker can execute scripts by inserting those into card template, as well as accessing arbitrary local and remote files.
<img src="file:///path/to/local/file"/> -> local file access
<img src="http://example.com/path/to/remote/file"/> -> remote file access
Created anki tracking bugs for this issue:
Affects: fedora-all [bug 1270804]