Question
E-Pragati
IN
Last activity: 3 Sep 2020 4:51 EDT
Missing Access Control Vulnerability in Pega
Pega platform has a access control vulnerability which allows attacker to gain access to internal resources.
An attacker can gain access to configuration files and also has access to create queries.
Access the URL /ServicesExport/configurations.zip file followed by token as shown in the URL
It is recommended to restrict...
***Edited by Moderator: Pallavi to update platform capability tags***
***Edited by Moderator Marissa to update General to Product***