Vulners
Lucene search
CVE-2023-22047
🗓️ 18 Jul 2023 20:18:30Reported by oracleType 
cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 163 Views🌐 WEB
| Reporter | Title | Published | Views | Family All 15 |
|---|---|---|---|---|
 | Exploit for Missing Authentication for Critical Function in Oracle Peoplesoft_Enterprise | 2 Apr 202503:54 | – | githubexploit |
 | The vulnerability of the PeopleSoft Enterprise PeopleTools component of the Oracle PeopleSoft Enterprise PeopleTools business application suite, which allows a hacker to disclose protected information | 24 Jul 202300:00 | – | bdu_fstec |
 | CVE-2023-22047 | 19 Jul 202300:36 | – | circl |
 | Oracle PeopleSoft Enterprise PeopleTools 安全漏洞 | 18 Jul 202300:00 | – | cnnvd |
 | CVE-2023-22047 | 18 Jul 202320:18 | – | cvelist |
 | Vulnerabilities fixed in Oracle PeopleSoft | 19 Jul 202300:00 | – | ncsc |
 | Oracle Peoplesoft - Unauthenticated File Read | 28 Jun 202615:08 | – | nuclei |
 | CVE-2023-22047 | 18 Jul 202321:15 | – | nvd |
 | Generic HTTP Directory Traversal / File Inclusion (Web Application URL Parameter) - Active Check | 26 Sep 201700:00 | – | openvas |
 | Oracle Critical Patch Update Advisory - July 2023 | 18 Jul 202300:00 | – | oracle |
10
Node
[
{
"vendor": "Oracle Corporation",
"product": "PeopleSoft Enterprise PT PeopleTools",
"versions": [
{
"version": "8.59",
"status": "affected"
},
{
"version": "8.60",
"status": "affected"
}
]
}
]| Source | Link |
|---|---|
| oracle | www.oracle.com/security-alerts/cpujul2023.html |
| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| wsrp-url | query param | RP?wsrp-url=file:///etc/passwd | Unauthenticated SSRF read access to local files via wsrp-url parameter (file protocol) enabling potential RCE | CWE-306 |
| wsrp-url | query param | RP?wsrp-url=file:///c:\windows\win.ini | Unauthenticated SSRF read access to Windows files via wsrp-url parameter (file protocol) enabling potential RCE | CWE-306 |
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
17 Jun 2026 05:34Current
7.2High risk
Vulners AI Score7.2
CVSS 3.17.5
EPSS0.74469
SSVC