Page 2 of 7 results (0.002 seconds)

CVSS: 5.0EPSS: 0%CPEs: 16EXPL: 0

psdoccgi.exe in PeopleSoft PeopleTools 8.4 through 8.43 allows remote attackers to read arbitrary files via the (1) headername or (2) footername arguments. • http://archives.neohapsis.com/archives/vulnwatch/2003-q4/0042.html http://lists.grok.org.uk/pipermail/full-disclosure/2003-November/013652.html http://www.auscert.org.au/render.html?it=3610 http://www.secunia.com/advisories/10225 http://www.securityfocus.com/bid/9037 https://exchange.xforce.ibmcloud.com/vulnerabilities/13754 •

CVSS: 5.0EPSS: 0%CPEs: 11EXPL: 0

Directory traversal vulnerability in PeopleTools 8.10 through 8.18, 8.40, and 8.41 allows remote attackers to overwrite arbitrary files via the SchedulerTransfer servlet. • http://www.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21999 http://www.iss.net/security_center/static/10962.php http://www.securityfocus.com/bid/7053 •