Lucene search
PRIOn knowledge basePRION:CVE-2017-11355HistoryAug 02, 2017 - 7:29 p.m.
Cross site scripting
2017-08-0219:29:00
PRIOn knowledge base
www.prio-n.com
2
0.002 Low
EPSS
Percentile
55.6%
Multiple cross-site scripting (XSS) vulnerabilities in PEGA Platform 7.2 ML0 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) PATH_INFO to the main page; the (2) beanReference parameter to the JavaBean viewer page; or the (3) pyTableName to the System database schema modification page.
| CPE | Name | Operator | Version |
|---|---|---|---|
| pega_platform | eq | <= 7.2-ml0 |
Related
cvelist
cvelist
CVE-2017-11355
2017-08-02 19:00:00
nvd
nvd
CVE-2017-11355
2017-08-02 19:29:00
cve
cve
CVE-2017-11355
2017-08-02 19:29:00
exploitpack
exploitpack
PEGA Platform 7.2 ML0 - Missing Access Control Cross-Site Scripting
2017-07-18 00:00:00
zdt
zdt
packetstorm
packetstorm
PEGA Platform 7.2 ML0 Missing Access Control / Cross Site Scripting
2017-07-17 00:00:00
exploitdb
exploitdb
PEGA Platform <= 7.2 ML0 - Missing Access Control / Cross-Site Scripting
2017-07-18 00:00:00