Vulnerability Details CVE-2003-0628
PeopleSoft Gateway Administration servlet (gateway.administration) in PeopleTools 8.43 and earlier allows remote attackers to obtain the full pathnames for server-side include (SSI) files via an HTTP request with an invalid value.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 64.8%
CVSS Severity
CVSS v2 Score 5.0
References
Products affected by CVE-2003-0628
-
cpe:2.3:a:peoplesoft:peopletools:8.10
-
cpe:2.3:a:peoplesoft:peopletools:8.11
-
cpe:2.3:a:peoplesoft:peopletools:8.12
-
cpe:2.3:a:peoplesoft:peopletools:8.13
-
cpe:2.3:a:peoplesoft:peopletools:8.14
-
cpe:2.3:a:peoplesoft:peopletools:8.15
-
cpe:2.3:a:peoplesoft:peopletools:8.16
-
cpe:2.3:a:peoplesoft:peopletools:8.17
-
cpe:2.3:a:peoplesoft:peopletools:8.18
-
cpe:2.3:a:peoplesoft:peopletools:8.19
-
cpe:2.3:a:peoplesoft:peopletools:8.20
-
cpe:2.3:a:peoplesoft:peopletools:8.4
-
cpe:2.3:a:peoplesoft:peopletools:8.40
-
cpe:2.3:a:peoplesoft:peopletools:8.41
-
cpe:2.3:a:peoplesoft:peopletools:8.42
-
cpe:2.3:a:peoplesoft:peopletools:8.43