Vulnerabilities > Oracle > Peoplesoft Enterprise Peopletools > Medium

DATE CVE VULNERABILITY TITLE RISK
2018-01-18 CVE-2015-9251 Cross-site Scripting vulnerability in multiple products
jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.
network
low complexity
jquery oracle CWE-79
6.1
2018-01-18 CVE-2018-2695 Unspecified vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.54/8.55/8.56
Vulnerability in the PeopleSoft Enterprise PeopleTools component of Oracle PeopleSoft Products (subcomponent: Query).
network
low complexity
oracle
6.5
2018-01-18 CVE-2018-2653 Unspecified vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.54/8.55/8.56
Vulnerability in the PeopleSoft Enterprise PeopleTools component of Oracle PeopleSoft Products (subcomponent: Connected Query).
network
low complexity
oracle
5.3
2018-01-18 CVE-2018-2605 Unspecified vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.54/8.55/8.56
Vulnerability in the PeopleSoft Enterprise PeopleTools component of Oracle PeopleSoft Products (subcomponent: Integration Broker).
network
low complexity
oracle
6.5
2017-10-19 CVE-2017-10422 Information Exposure vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.54
Vulnerability in the PeopleSoft Enterprise PeopleTools component of Oracle PeopleSoft Products (subcomponent: Updates Change Assistant).
network
high complexity
oracle CWE-200
5.9
2017-10-19 CVE-2017-10418 Unspecified vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.56
Vulnerability in the PeopleSoft Enterprise PT PeopleTools component of Oracle PeopleSoft Products (subcomponent: PeopleSoft CDA).
network
low complexity
oracle
6.4
2017-10-19 CVE-2017-10406 Unspecified vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.54/8.55/8.56
Vulnerability in the PeopleSoft Enterprise PeopleTools component of Oracle PeopleSoft Products (subcomponent: PIA Core Technology).
network
low complexity
oracle
6.1
2017-10-19 CVE-2017-10394 Unspecified vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.54/8.55/8.56
Vulnerability in the PeopleSoft Enterprise PeopleTools component of Oracle PeopleSoft Products (subcomponent: Security).
network
low complexity
oracle
5.4
2017-10-19 CVE-2017-10382 Unspecified vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.54/8.55/8.56
Vulnerability in the PeopleSoft Enterprise PeopleTools component of Oracle PeopleSoft Products (subcomponent: PIA Core Technology).
network
low complexity
oracle
4.7
2017-10-19 CVE-2017-10381 Unspecified vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.54/8.55/8.56
Vulnerability in the PeopleSoft Enterprise PeopleTools component of Oracle PeopleSoft Products (subcomponent: PIA Core Technology).
network
low complexity
oracle
6.1