3 matches found
CVE-2020-23957
Pega Platform through 8.4.x is affected by Cross Site Scripting XSS via the ConnectionID parameter, as demonstrated by a pyActivity=Data-TRACERSettings.pzStartTracerSession request to a PRAuth URI...
CVE-2020-23957
Pega Platform through 8.4.x is affected by Cross Site Scripting XSS via the ConnectionID parameter, as demonstrated by a pyActivity=Data-TRACERSettings.pzStartTracerSession request to a PRAuth URI...
CVE-2020-23957
CVE-2020-23957 affects Pegasystem Pega Platform up to version 8.4.x. The vulnerability is a Cross Site Scripting (XSS) flaw exploitable via the ConnectionID parameter, demonstrated by a request such as pyActivity=Data-TRACERSettings.pzStartTracerSession to a PRAuth URI. The provided connected doc...