Arbitrary Web Script Injection Vulnerability in PeopleSoft HRMS 7.0

Arbitrary Web Script Injection Vulnerability in PeopleSoft HRMS 7.0

CVE-2004-2435 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in PeopleSoft Human Resources Management System (HRMS) 7.0, when "web enabled" using HTML Access, allows remote attackers to inject arbitrary web script or HTML via unspecified (1) debugging or (2) utility scripts.

Learn more about our Web App Pen Testing.