Show filters
77 Total Results
Displaying 1-10 of 77
Sort by:
Attacker Value
Unknown

CVE-2024-12211

Disclosure Date: January 13, 2025 (last updated January 14, 2025)
Pega Platform versions 8.1 to Infinity 24.2.0 are affected by an Stored XSS issue with profile.
0
0
Attacker Value
Unknown

CVE-2024-10716

Disclosure Date: December 05, 2024 (last updated December 21, 2024)
Pega Platform versions 8.1 to Infinity 24.2.0 are affected by an XSS issue with search.
0
0
Attacker Value
Unknown

CVE-2024-10094

Disclosure Date: November 20, 2024 (last updated November 21, 2024)
Pega Platform versions 6.x to Infinity 24.1.1 are affected by an issue with Improper Control of Generation of Code
0
0
Attacker Value
Unknown

CVE-2024-6702

Disclosure Date: September 12, 2024 (last updated September 14, 2024)
Pega Platform versions 8.1 to Infinity 24.1.2 are affected by an HTML Injection issue with Stage.
Attack Vector: NetworkPrivileges: HighUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2024-6701

Disclosure Date: September 12, 2024 (last updated September 14, 2024)
Pega Platform versions 8.1 to Infinity 24.1.2 are affected by an XSS issue with case type.
Attack Vector: NetworkPrivileges: HighUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2024-6700

Disclosure Date: September 12, 2024 (last updated September 14, 2024)
Pega Platform versions 8.1 to Infinity 24.1.2 are affected by an XSS issue with App name.
Attack Vector: NetworkPrivileges: HighUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2023-37225

Disclosure Date: December 25, 2023 (last updated December 30, 2023)
Pexip Infinity before 32 allows Webapp1 XSS via preconfigured links.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2023-31455

Disclosure Date: December 25, 2023 (last updated December 30, 2023)
Pexip Infinity before 31.2 has Improper Input Validation for RTCP, allowing remote attackers to trigger an abort.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2023-31289

Disclosure Date: December 25, 2023 (last updated December 30, 2023)
Pexip Infinity before 31.2 has Improper Input Validation for signalling, allowing remote attackers to trigger an abort.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2022-1607

Disclosure Date: February 24, 2023 (last updated November 08, 2023)
Cross-Site Request Forgery (CSRF) vulnerability in ABB Pulsar Plus System Controller NE843_S, ABB Infinity DC Power Plant allows Cross Site Request Forgery.This issue affects Pulsar Plus System Controller NE843_S : comcode 150042936; Infinity DC Power Plant: H5692448 G104 G842 G224L G630-4 G451C(2) G461(2) – comcode 150047415.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0
View More Topics  Next >