Unrated severityNVD Advisory· Published Dec 15, 2003· Updated Apr 16, 2026
CVE-2003-0628
CVE-2003-0628
Description
PeopleSoft Gateway Administration servlet (gateway.administration) in PeopleTools 8.43 and earlier allows remote attackers to obtain the full pathnames for server-side include (SSI) files via an HTTP request with an invalid value.
Affected products
16cpe:2.3:a:peoplesoft:peopletools:8.10:*:*:*:*:*:*:*+ 15 more
- cpe:2.3:a:peoplesoft:peopletools:8.10:*:*:*:*:*:*:*
- cpe:2.3:a:peoplesoft:peopletools:8.11:*:*:*:*:*:*:*
- cpe:2.3:a:peoplesoft:peopletools:8.12:*:*:*:*:*:*:*
- cpe:2.3:a:peoplesoft:peopletools:8.13:*:*:*:*:*:*:*
- cpe:2.3:a:peoplesoft:peopletools:8.14:*:*:*:*:*:*:*
- cpe:2.3:a:peoplesoft:peopletools:8.15:*:*:*:*:*:*:*
- cpe:2.3:a:peoplesoft:peopletools:8.16:*:*:*:*:*:*:*
- cpe:2.3:a:peoplesoft:peopletools:8.17:*:*:*:*:*:*:*
- cpe:2.3:a:peoplesoft:peopletools:8.18:*:*:*:*:*:*:*
- cpe:2.3:a:peoplesoft:peopletools:8.19:*:*:*:*:*:*:*
- cpe:2.3:a:peoplesoft:peopletools:8.20:*:*:*:*:*:*:*
- cpe:2.3:a:peoplesoft:peopletools:8.4:*:*:*:*:*:*:*
- cpe:2.3:a:peoplesoft:peopletools:8.40:*:*:*:*:*:*:*
- cpe:2.3:a:peoplesoft:peopletools:8.41:*:*:*:*:*:*:*
- cpe:2.3:a:peoplesoft:peopletools:8.42:*:*:*:*:*:*:*
- cpe:2.3:a:peoplesoft:peopletools:8.43:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- marc.infonvd
News mentions
0No linked articles in our index yet.