Описание
PeopleSoft Gateway Administration servlet (gateway.administration) in PeopleTools 8.43 and earlier allows remote attackers to obtain the full pathnames for server-side include (SSI) files via an HTTP request with an invalid value.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:peoplesoft:peopletools:8.4:*:*:*:*:*:*:*
cpe:2.3:a:peoplesoft:peopletools:8.10:*:*:*:*:*:*:*
cpe:2.3:a:peoplesoft:peopletools:8.11:*:*:*:*:*:*:*
cpe:2.3:a:peoplesoft:peopletools:8.12:*:*:*:*:*:*:*
cpe:2.3:a:peoplesoft:peopletools:8.13:*:*:*:*:*:*:*
cpe:2.3:a:peoplesoft:peopletools:8.14:*:*:*:*:*:*:*
cpe:2.3:a:peoplesoft:peopletools:8.15:*:*:*:*:*:*:*
cpe:2.3:a:peoplesoft:peopletools:8.16:*:*:*:*:*:*:*
cpe:2.3:a:peoplesoft:peopletools:8.17:*:*:*:*:*:*:*
cpe:2.3:a:peoplesoft:peopletools:8.18:*:*:*:*:*:*:*
cpe:2.3:a:peoplesoft:peopletools:8.19:*:*:*:*:*:*:*
cpe:2.3:a:peoplesoft:peopletools:8.20:*:*:*:*:*:*:*
cpe:2.3:a:peoplesoft:peopletools:8.40:*:*:*:*:*:*:*
cpe:2.3:a:peoplesoft:peopletools:8.41:*:*:*:*:*:*:*
cpe:2.3:a:peoplesoft:peopletools:8.42:*:*:*:*:*:*:*
cpe:2.3:a:peoplesoft:peopletools:8.43:*:*:*:*:*:*:*
EPSS
Процентиль: 65%
0.00497
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
PeopleSoft Gateway Administration servlet (gateway.administration) in PeopleTools 8.43 and earlier allows remote attackers to obtain the full pathnames for server-side include (SSI) files via an HTTP request with an invalid value.
EPSS
Процентиль: 65%
0.00497
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other