CVE-2024-6700 | Pegasystems Pega Infinity up to 24.1.2 App Name cross site scripting

Inserito da Angelo Barbosa | Set 12, 2024 | CVE

A vulnerability has been found in Pegasystems Pega Infinity up to 24.1.2 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component App Name Handler. The manipulation leads to cross site scripting.

This vulnerability is known as CVE-2024-6700. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-6700 | Pegasystems Pega Infinity up to 24.1.2 App Name cross site scripting

Post correlati

CVE-2020-36830 | nescalante urlregex up to 0.5.0 Backtracking index.js redos

CVE-2023-30313 | Wavlink Quantum D2G TCP denial of service

CVE-2024-4552 | Social Login Lite For WooCommerce Plugin up to 1.6.0 on WordPress improper authentication

CVE-2023-42019 | IBM InfoSphere Information Server 11.7 denial of service (XFDB-265569)