XSS in Pegasystems Pega Infinity
CVE-2026-1562
Pega Platform versions 8.1.0 through 25.1.2 are affected by an Stored Cross-site scripting (XSS) vulnerability in a user interface component. Requires a high privileged user with a developer role.
Vulnerability class: XSS (Cross-Site Scripting)
Affected products
- Pegasystems Pega Infinity — versions 8.1.0