NuytsTech Security

CVE-2006-6509

by ·

Cross-site scripting (XSS) vulnerability in the skinning feature in SiteKiosk before 6.5.150 allows local users to bypass security protections and inject arbitrary web script or HTML via an ABOUT: URI, which is displayed in the title bar of the browser.

Date published : 2006-12-13

http://www.securityfocus.com/bid/21567

http://www.securityfocus.com/archive/1/454185/100/0/threaded

Tags: