5 matches found
CVE-2017-11356
The application distribution export functionality in PEGA Platform 7.2 ML0 and earlier allows remote authenticated users with certain privileges to obtain sensitive configuration information by leveraging a missing access control...
CVE-2017-11356
The CVE-2017-11356 entry describes an improper access control in the Pegasystem PEGA Platform, where the application distribution export function in PEGA Platform 7.2 ML0 and earlier allows remote authenticated users with certain privileges to obtain sensitive configuration information due to a m...
PEGA Platform <= 7.2 ML0 - Missing Access Control / Cross-Site Scripting Vulnerabilities
Exploit for multiple platform in category web applications Summary ======= 1. Missing access control CVE-2017-11356 2. Multiple cross-site scripting CVE-2017-11355 Vendor ====== "Pegasystems Inc. is the leader in software for customer engagement and operational excellence. Pega’s adaptive,...
PEGA Platform <= 7.2 ML0 - Missing Access Control / Cross-Site Scripting
Summary ======= 1. Missing access control CVE-2017-11356 2. Multiple cross-site scripting CVE-2017-11355 Vendor ====== "Pegasystems Inc. is the leader in software for customer engagement and operational excellence. Pega’s adaptive, cloud-architected software – built on its unified Pega® Platform ...
PEGA Platform 7.2 ML0 Missing Access Control / Cross Site Scripting
Summary ======= 1. Missing access control CVE-2017-11356 2. Multiple cross-site scripting CVE-2017-11355 Vendor ====== "Pegasystems Inc. is the leader in software for customer engagement and operational excellence. Pegaas adaptive, cloud-architected software a built on its unified PegaAr Platform...