XSS in Pegasystems Pega Infinity

CVE-2026-1562

Pega Platform versions 8.1.0 through 25.1.2 are affected by an Stored Cross-site scripting (XSS) vulnerability in a user interface component. Requires a high privileged user with a developer role.

Vulnerability class: XSS (Cross-Site Scripting)

Affected products

Weakness classification (CWE)

References