Show filters
57 Total Results
Displaying 1-10 of 57
Sort by:
Attacker Value
Unknown

CVE-2024-12211

Disclosure Date: January 13, 2025 (last updated January 14, 2025)
Pega Platform versions 8.1 to Infinity 24.2.0 are affected by an Stored XSS issue with profile.
0
0
Attacker Value
Unknown

CVE-2024-10716

Disclosure Date: December 05, 2024 (last updated December 21, 2024)
Pega Platform versions 8.1 to Infinity 24.2.0 are affected by an XSS issue with search.
0
0
Attacker Value
Unknown

CVE-2024-10094

Disclosure Date: November 20, 2024 (last updated November 21, 2024)
Pega Platform versions 6.x to Infinity 24.1.1 are affected by an issue with Improper Control of Generation of Code
0
0
Attacker Value
Unknown

CVE-2024-6702

Disclosure Date: September 12, 2024 (last updated September 14, 2024)
Pega Platform versions 8.1 to Infinity 24.1.2 are affected by an HTML Injection issue with Stage.
Attack Vector: NetworkPrivileges: HighUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2024-6701

Disclosure Date: September 12, 2024 (last updated September 14, 2024)
Pega Platform versions 8.1 to Infinity 24.1.2 are affected by an XSS issue with case type.
Attack Vector: NetworkPrivileges: HighUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2024-6700

Disclosure Date: September 12, 2024 (last updated September 14, 2024)
Pega Platform versions 8.1 to Infinity 24.1.2 are affected by an XSS issue with App name.
Attack Vector: NetworkPrivileges: HighUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2023-50168

Disclosure Date: March 14, 2024 (last updated April 01, 2024)
Pega Platform from 6.x to 8.8.4 is affected by an XXE issue with PDF Generation.
0
0
Attacker Value
Unknown

CVE-2023-50167

Disclosure Date: March 06, 2024 (last updated February 19, 2025)
Pega Platform from 7.1.7 to 23.1.1 is affected by an XSS issue with editing/rendering user html content.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2023-50166

Disclosure Date: January 31, 2024 (last updated February 07, 2024)
Pega Platform from 8.5.4 to 8.8.3 is affected by an XSS issue with an unauthenticated user and the redirect parameter.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2023-50165

Disclosure Date: January 31, 2024 (last updated February 07, 2024)
Pega Platform versions 8.2.1 to Infinity 23.1.0 are affected by an Generated PDF issue that could expose file contents.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
View More Topics  Next >