Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
PeopleSoft Gateway Administration servlet (gateway.administration) in PeopleTools 8.43 and earlier allows remote attackers to obtain the full pathnames for server-side include (SSI) files via an HTTP request with an invalid value.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
PeopleSoft PeopleTools网关管理Servlet路径泄露漏洞
Vulnerability Description
PeopleSoft企业软件集成多个商务功能,包括人事、客户关系、供求关系、财务等管理。 PeopleSoft PeopleTools网关管理Servlet存在信息泄露问题,远程攻击者可以利用这个漏洞获得服务器配置文件路径信息。 gateway.administration servlet在PeopleSoft环境中用于配置部分设置,应用程序从HTML表单中接收部分值,如果提交非法数据,servlet就会返回包含配置文件路径信息的错误页面。
CVSS Information
N/A
Vulnerability Type
N/A