[kmail2] [Bug 394554] Regression: kMail 5.8.1 Information Leak: kMail loads external references in HTML mails without asking
Gunter Ohrner
bugzilla_noreply at kde.org
Tue May 22 11:46:42 BST 2018
https://bugs.kde.org/show_bug.cgi?id=394554
--- Comment #2 from Gunter Ohrner <kdebugs at CustomCDROM.de> ---
Created attachment 112809
--> https://bugs.kde.org/attachment.cgi?id=112809&action=edit
HTML mail from indeed.com
Yes, every HTML mail with external image references I tested before opening
this issue. See attached screenshot for one example.
The segment with the logo image looks as follows:
<td align="center" style="padding:0 0 25px;">
<a style="text-decoration:none;"
href="http://www.indeed.com/?utm_source=jobseeker_emails&utm_medium=email&utm_campaign=tos">
<img
src="http://tophat-cms-prod.s3.amazonaws.com/wp-content/uploads/2016/02/18221139/logo9.png"
width="130" style="width:130px; font:bold 34px/38px HelveticaNeue, Helvetica,
Arial, Roboto, Noto, sans-serif; color:#2164f3; vertical-align:top;"
alt="Indeed" />
</a>
</td>
I only clicked the "activate HTML rendering", I did not confirm the loading of
any external references.
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the Kdepim-bugs
mailing list