5 matches found
CVE-2017-3300
CVE-2017-3300 pertains to Oracle PeopleSoft Enterprise PeopleTools (Multichannel Framework) with affected versions 8.54 and 8.55. The vulnerability is a cross-site scripting (XXS) flaw that can be triggered via HTTP requests, potentially allowing an attacker to hijack session data or access/modif...
CVE-2017-3300
Vulnerability in the PeopleSoft Enterprise PeopleTools component of Oracle PeopleSoft Products subcomponent: Multichannel Framework. Supported versions that are affected are 8.54 and 8.55. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...
Oracle PeopleSoft HCM 9.2 Cross Site Scripting Vulnerability
Exploit for windows platform in category local exploits Application: Oracle PeopleSoft Vendor: Oracle Bugs: XXS Reported: 31.10.2016 Vendor response: 1.11.2016 Date of Public Advisory: 17.01.2017 Reference: Oracle CPU Jan 2017 Authors: Vahagn Vardanyan, Dmitry Yudin 1. ADVISORY INFORMATION Title:...
Oracle PeopleSoft HCM 9.2 Cross Site Scripting
Application: Oracle PeopleSoft Vendor: Oracle Bugs: XXS Reported: 31.10.2016 Vendor response: 1.11.2016 Date of Public Advisory: 17.01.2017 Reference: Oracle CPU Jan 2017 Authors: Vahagn Vardanyan, Dmitry Yudin 1. ADVISORY INFORMATION Title: Oracle PeopleSoft a XSS vulnerability Advisory ID:...
Oracle PeopleSoft – XSS vulnerability
Application: Oracle PeopleSoft Vendor: Oracle Bug: XXS Reported: 31.10.2016 Vendor response: 1.11.2016 Date of Public Advisory: 17.01.2017 Reference: Oracle CPU Jan 2017 Authors: Vahagn Vardanyan, Dmitry Yudin VULNERABILITY INFORMATION Class: XSS CWE-79 Impact: steal information Remotely...