Question
Sun Life
CA
Posted: Jul 12, 2023
Last activity: Jul 17, 2023
Last activity: 17 Jul 2023 5:54 EDT
A23 Hotfix applied but stored XSS still an issue
Greetings,
Our PEGA has the A23 hotfix but one of our web page that allows user to enter note and message note is vulnerable to stored XSS attack.
I am not sure how the A23 works.
Do we need an extra steps on the pega web page to filter xss script?
Please advise.
***Edited by Moderator Marije to add Capability tags***
To see attachments, please log in.