2 matches found
CVE-2002-1727
CVE-2002-1727 is a cross-site scripting (XSS) vulnerability in the askSam Web Publisher 1 and 4 products, specifically in the executables as_web.exe and as_web4.exe . The issue allows remote attackers to execute arbitrary script in the context of other users by supplying a crafted URL. The vulner...
CVE-2002-1728
AskSam Web Publisher 1.0 and 4.0 are affected by a path disclosure vulnerability. The issue occurs when a user requests a non-existent file, causing an error message that reveals the full path to the web root directory. The accessible documents state this information exposure and do not provide e...