Lucene search
HistoryDec 15, 2003 - 5:00 a.m.
CVE-2003-0629
cve-2003-0629
cross-site scripting
xss
peoplesoft iscript
peopletools 8.43
nvd
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.9 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
46.9%
Cross-site scripting (XSS) vulnerability in PeopleSoft IScript environment for PeopleTools 8.43 and earlier allows remote attackers to insert arbitrary web script via a certain HTTP request to IScript.
Affected configurations
Node
peoplesoftpeopletoolsMatch8.4
ORpeoplesoftpeopletoolsMatch8.10
ORpeoplesoftpeopletoolsMatch8.11
ORpeoplesoftpeopletoolsMatch8.12
ORpeoplesoftpeopletoolsMatch8.13
ORpeoplesoftpeopletoolsMatch8.14
ORpeoplesoftpeopletoolsMatch8.15
ORpeoplesoftpeopletoolsMatch8.16
ORpeoplesoftpeopletoolsMatch8.17
ORpeoplesoftpeopletoolsMatch8.18
ORpeoplesoftpeopletoolsMatch8.19
ORpeoplesoftpeopletoolsMatch8.20
ORpeoplesoftpeopletoolsMatch8.40
ORpeoplesoftpeopletoolsMatch8.41
ORpeoplesoftpeopletoolsMatch8.42
ORpeoplesoftpeopletoolsMatch8.43
Related
cvelist
cvelist
CVE-2003-0629
2003-11-18 05:00:00
nvd
nvd
CVE-2003-0629
2003-12-15 05:00:00
securityvulns
securityvulns
Corsaire Security Advisory: PeopleSoft IScript XSS issue
2003-11-13 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.9 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
46.9%
Related for CVE-2003-0629