5 matches found
CVE-2003-0628
PeopleSoft Gateway Administration servlet gateway.administration in PeopleTools 8.43 and earlier allows remote attackers to obtain the full pathnames for server-side include SSI files via an HTTP request with an invalid value...
CVE-2003-0629
Cross-site scripting XSS vulnerability in PeopleSoft IScript environment for PeopleTools 8.43 and earlier allows remote attackers to insert arbitrary web script via a certain HTTP request to IScript...
CVE-2003-0629
CVE-2003-0629 concerns the PeopleSoft IScript environment in PeopleTools 8.43 and earlier. The XSS vulnerability arises from how the IScript interface processes HTTP requests, allowing remote attackers to inject arbitrary web script via a crafted request. Impact can include theft of session data ...
CVE-2003-0629
Cross-site scripting XSS vulnerability in PeopleSoft IScript environment for PeopleTools 8.43 and earlier allows remote attackers to insert arbitrary web script via a certain HTTP request to IScript...
CVE-2003-0628
This CVE affects the PeopleSoft Gateway Administration servlet (gateway.administration) in PeopleTools 8.43 and earlier. An attacker can disclose the full pathnames of server-side include (SSI) files by sending an HTTP request with an invalid value, a path-disclosure vulnerability impacting confi...