CVE-2026-1564

· NIST NVD ↗

Pega Platform versions 8.1.0 through 25.1.1 are affected by an HTML Injection vulnerability in a user interface component. Requires a high privileged user with a developer role.

MEDIUM
CVSS severity
4.8
CVSS base score
2026-04-15
Published

CWE codes

CWE-80

Affected products

pega:pega_platform

Sources