Anonymous Directory Traversal Vulnerability (Double Encode) - PeopleSoft

Application: Oracle PeopleSoft Versions Affected: PeopleTools 8.54, 8.55 Vendor: Oracle Bugs: Directory Traversal and Authentication Bypass Reported: 16.03.2017 Vendor response: 17.03.2017 Date of Public Advisory: 18.07.2017 Reference: Oracle CPU July 2017 Authors: Dmitrii Iudin aka @ret5et ERPSc...