CVE-2025-8681 | Pegasystems Pega Infinity up to 24.2.2 User Interface cross site scripting

Inserito da Angelo Barbosa | Set 10, 2025 | CVE

A vulnerability classified as problematic was found in Pegasystems Pega Infinity up to 24.2.2. This affects an unknown function of the component User Interface. Such manipulation leads to cross site scripting.

This vulnerability is referenced as CVE-2025-8681. It is possible to launch the attack remotely. No exploit is available.

Upgrading the affected component is advised.

CVE-2025-8681 | Pegasystems Pega Infinity up to 24.2.2 User Interface cross site scripting

Post correlati

CVE-2024-47822 | Directus up to 10.13.1 log file (GHSA-vw58-ph65-6rxp)

CVE-2025-3980 | wowjoy 浙江湖州华卓信息科技有限公司 Internet Doctor Workstation System 1.0 /v1/prescription/list improper authorization

CVE-2024-7062 | Nimble Commander up to 1.6.0 Build 4087 on macOS info.filesmanager.Files.PrivilegedIOHelperV2 authorization

CVE-2024-10674 | Th Shop Mania Plugin up to 1.4.9 on WordPress Plugin Installation access control