RSS   Vulnerabilities for 'Escapade'   RSS

2003-09-17
 
CVE-2003-0764

 

 
Escapade Scripting Engine (ESP) allows remote attackers to obtain sensitive path information via a malformed request, which leaks the information in an error message, as demonstrated using the PAGE parameter.

 
 
CVE-2003-0763

 

 
Cross-site scripting (XSS) vulnerability in Escapade Scripting Engine (ESP) allows remote attackers to inject arbitrary script via the method parameter, as demonstrated using the PAGE parameter.

 


Copyright 2024, cxsecurity.com

 

Back to Top