CVE-2026-58266 (GCVE-0-2026-58266)

Vulnerability from cvelistv5 – Published: 2026-07-07 21:13 – Updated: 2026-07-08 13:23
VLAI
Title
Anki: User scripts in iframes have access to the internal Anki API
Summary
Anki is a program for creating and reviewing flashcards. Prior to 25.09.4, Anki's webview-based pages communicate with the Rust backend using an internal localhost API, and user scripts included via iframes in the editor can access this API despite protections intended to block reviewer and editor scripts. A malicious imported card package with an embedded iframe can use exposed API methods such as getImageForOcclusion to read arbitrary files accessible to the Anki process and exfiltrate them over the network. This issue is fixed in version 25.09.4.
SSVC
Exploitation: none Automatable: no Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
  • CWE-346 - Origin Validation Error
Assigner
Impacted products
Vendor Product Version
ankitects anki Affected: < 25.09.4
Create a notification for this product.
Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-58266",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-07-08T13:23:23.495354Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-07-08T13:23:46.962Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "anki",
          "vendor": "ankitects",
          "versions": [
            {
              "status": "affected",
              "version": "\u003c 25.09.4"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Anki is a program for creating and reviewing flashcards. Prior to 25.09.4, Anki\u0027s webview-based pages communicate with the Rust backend using an internal localhost API, and user scripts included via iframes in the editor can access this API despite protections intended to block reviewer and editor scripts. A malicious imported card package with an embedded iframe can use exposed API methods such as getImageForOcclusion to read arbitrary files accessible to the Anki process and exfiltrate them over the network. This issue is fixed in version 25.09.4."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-346",
              "description": "CWE-346: Origin Validation Error",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-07-07T21:13:42.650Z",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "name": "https://github.com/ankitects/anki/security/advisories/GHSA-cw6h-ffmh-x6vh",
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/ankitects/anki/security/advisories/GHSA-cw6h-ffmh-x6vh"
        },
        {
          "name": "https://github.com/ankitects/anki/commit/b2b68d829e853da51b5de8aad6c13b53e90bc20d",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/ankitects/anki/commit/b2b68d829e853da51b5de8aad6c13b53e90bc20d"
        },
        {
          "name": "https://github.com/ankitects/anki/releases/tag/25.09.4",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/ankitects/anki/releases/tag/25.09.4"
        }
      ],
      "source": {
        "advisory": "GHSA-cw6h-ffmh-x6vh",
        "discovery": "UNKNOWN"
      },
      "title": "Anki: User scripts in iframes have access to the internal Anki API"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2026-58266",
    "datePublished": "2026-07-07T21:13:42.650Z",
    "dateReserved": "2026-06-29T21:54:30.331Z",
    "dateUpdated": "2026-07-08T13:23:46.962Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2026-58266",
      "date": "2026-07-08",
      "epss": "0.00169",
      "percentile": "0.06492"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2026-58266\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2026-07-07T22:16:54.207\",\"lastModified\":\"2026-07-08T15:28:15.630\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Anki is a program for creating and reviewing flashcards. Prior to 25.09.4, Anki\u0027s webview-based pages communicate with the Rust backend using an internal localhost API, and user scripts included via iframes in the editor can access this API despite protections intended to block reviewer and editor scripts. A malicious imported card package with an embedded iframe can use exposed API methods such as getImageForOcclusion to read arbitrary files accessible to the Anki process and exfiltrate them over the network. This issue is fixed in version 25.09.4.\"}],\"affected\":[{\"source\":\"security-advisories@github.com\",\"affectedData\":[{\"vendor\":\"ankitects\",\"product\":\"anki\",\"versions\":[{\"version\":\"\u003c 25.09.4\",\"status\":\"affected\"}]}]}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N\",\"baseScore\":6.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.8,\"impactScore\":3.6}],\"ssvcV203\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"ssvcData\":{\"timestamp\":\"2026-07-08T13:23:23.495354Z\",\"id\":\"CVE-2026-58266\",\"options\":[{\"exploitation\":\"none\"},{\"automatable\":\"no\"},{\"technicalImpact\":\"partial\"}],\"role\":\"CISA Coordinator\",\"version\":\"2.0.3\"}}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-346\"}]}],\"references\":[{\"url\":\"https://github.com/ankitects/anki/commit/b2b68d829e853da51b5de8aad6c13b53e90bc20d\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/ankitects/anki/releases/tag/25.09.4\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/ankitects/anki/security/advisories/GHSA-cw6h-ffmh-x6vh\",\"source\":\"security-advisories@github.com\"}]}}",
    "vulnrichment": {
      "containers": "{\"cna\": {\"title\": \"Anki: User scripts in iframes have access to the internal Anki API\", \"source\": {\"advisory\": \"GHSA-cw6h-ffmh-x6vh\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 6.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"REQUIRED\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"HIGH\"}}], \"affected\": [{\"vendor\": \"ankitects\", \"product\": \"anki\", \"versions\": [{\"status\": \"affected\", \"version\": \"\u003c 25.09.4\"}]}], \"references\": [{\"url\": \"https://github.com/ankitects/anki/security/advisories/GHSA-cw6h-ffmh-x6vh\", \"name\": \"https://github.com/ankitects/anki/security/advisories/GHSA-cw6h-ffmh-x6vh\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"https://github.com/ankitects/anki/commit/b2b68d829e853da51b5de8aad6c13b53e90bc20d\", \"name\": \"https://github.com/ankitects/anki/commit/b2b68d829e853da51b5de8aad6c13b53e90bc20d\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/ankitects/anki/releases/tag/25.09.4\", \"name\": \"https://github.com/ankitects/anki/releases/tag/25.09.4\", \"tags\": [\"x_refsource_MISC\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Anki is a program for creating and reviewing flashcards. Prior to 25.09.4, Anki\u0027s webview-based pages communicate with the Rust backend using an internal localhost API, and user scripts included via iframes in the editor can access this API despite protections intended to block reviewer and editor scripts. A malicious imported card package with an embedded iframe can use exposed API methods such as getImageForOcclusion to read arbitrary files accessible to the Anki process and exfiltrate them over the network. This issue is fixed in version 25.09.4.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-346\", \"description\": \"CWE-346: Origin Validation Error\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2026-07-07T21:13:42.650Z\"}}, \"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2026-58266\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-07-08T13:23:23.495354Z\"}}}], \"providerMetadata\": {\"shortName\": \"CISA-ADP\", \"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"dateUpdated\": \"2026-07-08T13:23:32.608Z\"}}]}",
      "cveMetadata": "{\"cveId\": \"CVE-2026-58266\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-07-07T21:13:42.650Z\", \"dateReserved\": \"2026-06-29T21:54:30.331Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2026-07-07T21:13:42.650Z\", \"assignerShortName\": \"GitHub_M\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.


Loading…

Loading…

Loading…

Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.

Sightings

Author Source Type Date Other

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Loading…

Detection rules are retrieved from Rulezet.

Loading…

Loading…