Vulnerabilities > Sitekiosk
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-12-14 | CVE-2006-6510 | Unspecified vulnerability in Sitekiosk An unspecified ActiveX control in SiteKiosk before 6.5.150 is installed "safe for scripting", which allows local users to bypass security protections and read arbitrary files via certain functions. | 1.7 |
2006-12-14 | CVE-2006-6509 | Unspecified vulnerability in Sitekiosk Cross-site scripting (XSS) vulnerability in the skinning feature in SiteKiosk before 6.5.150 allows local users to bypass security protections and inject arbitrary web script or HTML via an ABOUT: URI, which is displayed in the title bar of the browser. local sitekiosk | 4.1 |