INC-168914 · Issue 659661
Updates added against Cross-site Scripting
Resolved in Pega Version 8.5.5
Cross-site Scripting (XSS) protections have been updated for the UI.
INC-168914 · Issue 659659
Updates added against Cross-site Scripting
Resolved in Pega Version 8.7
Cross-site Scripting (XSS) protections have been updated for the UI.
INC-137874 · Issue 599131
Cross-site scripting update for Dev Studio
Resolved in Pega Version 8.4.4
Cross Site Scripting (XSS) protections have been added to Developer Studio.
INC-146921 · Issue 601638
Cross-site scripting update for Dev Studio
Resolved in Pega Version 8.4.4
Cross Site Scripting (XSS) protections have been added to Developer Studio.
INC-137874 · Issue 599128
Cross site scripting update for Dev Studio
Resolved in Pega Version 8.6
Cross Site Scripting (XSS) protections have been added to Developer Studio.
INC-146921 · Issue 601636
Cross site scripting update for Dev Studio
Resolved in Pega Version 8.6
Cross Site Scripting (XSS) protections have been added to Developer Studio.
SR-A91743 · Issue 259136
Security update for pxInitials control
Resolved in Pega Version 7.2.2
XSS (Cross Scripting Filter) has been added for potentially exploitable parameters in the pxInitials control.
SR-A91743 · Issue 258673
Security update for pxInitials control
Resolved in Pega Version 7.2.2
XSS (Cross Scripting Filter) has been added for potentially exploitable parameters in the pxInitials control.
SR-D38581 · Issue 504775
Removed unnecessary cross-site scripting filtering on paragraph rule
Resolved in Pega Version 8.2.4
When a link was set in a paragraph rule, the target option was removed in the returned layout structure. This was traced to unnecessary XSS filtering which has now been removed.
SR-A21550 · Issue 241070
Removed unnecessary filtering on "&" in list item ID
Resolved in Pega Version 7.2.1
The unnecessary use of a XSS filter was causing a list item ID containing an ampersand ("&") to be encoded and displayed in a work tab as "(&"). This filter has been removed from this function.