Reflected Cross-Site Scripting Vulnerability in Pega Platform's ActionStringID Function

CVE-2020-8774 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L

Pega Platform before version 8.2.6 is affected by a Reflected Cross-Site Scripting vulnerability in the "ActionStringID" function.

Learn more about our Web Application Penetration Testing UK.