Vulnerabilities > Sitekiosk

DATE CVE VULNERABILITY TITLE RISK
2006-12-14 CVE-2006-6510 Unspecified vulnerability in Sitekiosk
An unspecified ActiveX control in SiteKiosk before 6.5.150 is installed "safe for scripting", which allows local users to bypass security protections and read arbitrary files via certain functions.
local
low complexity
sitekiosk
1.7
2006-12-14 CVE-2006-6509 Unspecified vulnerability in Sitekiosk
Cross-site scripting (XSS) vulnerability in the skinning feature in SiteKiosk before 6.5.150 allows local users to bypass security protections and inject arbitrary web script or HTML via an ABOUT: URI, which is displayed in the title bar of the browser.
local
sitekiosk
4.1