3 matches found
Oracle PeopleSoft - 'PeopleSoftServiceListeningConnector' XML External Entity via DOCTYPE
Application: Oracle PeopleSoft Versions Affected: PeopleSoft HCM 9.2 on PeopleTools 8.55 Vendor URL: http://oracle.com Bug: XXE Reported: 23.12.2016 Vendor response: 24.12.2016 Date of Public Advisory: 18.04.2017 Reference: Oracle CPU April 2017 Author: Nadya Krivdyuk ERPScan Description 1...
Multiple XSS Vulnerabilities in TestServlet (PeopleSoft)
Application: Oracle PeopleSoft Versions Affected: PeopleTools 8.54, 8.55 Vendor: Oracle Bugs: XSS Reported: 26.01.2017 Vendor response: 27.01.2017 Date of Public Advisory: 18.07.2017 Reference: Oracle CPU July 2017 Authors: Dmitri Iudin aka @ret5et ERPScan VULNERABILITY INFORMATION Class: XSS...
CVE-2016-0473
CNVD-2016-00501 and related records describe an unspecified vulnerability in Oracle PeopleSoft PeopleTools Fluid Core component affecting Oracle PeopleSoft Products 8.54/8.55, allowing remote authenticated attackers to make unauthorized data changes via unknown vectors. The CNVD entry provides li...