Vulnerabilities > CVE-2002-1728 - Cross-Site Scripting vulnerability in askSam Web Publisher 1.0/4.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
askSam Web Publisher 1.0 and 4.0 allows remote attackers to determine the full path to the web root directory via a request for a file that does not exist, which generates an error message that reveals the full path.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |