CVE-2002-1252
The Application Messaging Gateway for PeopleTools 8.1x before 8.19, as used in various PeopleSoft products, allows remote attackers to read arbitrary files via certain XML External Entities (XXE) fields in an HTTP POST request that is processed by the SimpleFileHandler handler.
| Software | From | Fixed in |
|---|---|---|
| peoplesoft / peopletools | 8.15 | 8.15.x |
| peoplesoft / peopletools | 8.17 | 8.17.x |
| peoplesoft / peopletools | 8.16 | 8.16.x |
| peoplesoft / peopletools | 8.14 | 8.14.x |
| peoplesoft / peopletools | 8.18 | 8.18.x |
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime