What the vulnerability does
01Description
Pega Platform versions 8.1 to Infinity 23.1.0 are affected by an XSS issue with task creation
CVSS base score
4.6/10
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
Key dates
02Disclosure timeline
October 18, 2023
CVE published
September 12, 2024
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2025-65956 Formwork CMS Has a Stored Cross-Site Scripting (XSS) Vulnerability in Blog Tags
CVE-2018-0407
CVE-2023-2302 Contact Form and Calls To Action by vcita <= 2.6.4 - Authenticated (Contributor+) Stored Cross-Site Scripting
CVE-2021-22936
CVE-2025-3970 baseweb JSite save cross site scripting
