Resolved Issues

View the resolved issues for a specific Platform release.

Download resolved issues

Go to download resolved issues by patch release.

See Platform Release Notes

Browse release notes for a selected Pega Version.

NOTE: Enter just the Case ID number (SR or INC) in order to find the associated Support Request.

Please note: beginning with the Pega Platform 8.7.4 Patch, the Resolved Issues have moved to the Support Center.

SR-D66095 · Issue 529706

Cross-site scripting security added to Richtext Editor

Resolved in Pega Version 8.2.6

A scenario where HTML objects could be copied and pasted into CKEditor and the click action modified to perform different actions was traced to Pega event attributes present in the rich-text editor content. This has been corrected by blacklisting Pega event attributes like data-click, etc. In

Get Started with Community

Resolved Issues

View the resolved issues for a specific Platform release.

Download resolved issues

See Platform Release Notes

NOTE: Enter just the Case ID number (SR or INC) in order to find the associated Support Request.

Please note: beginning with the Pega Platform 8.7.4 Patch, the Resolved Issues have moved to the Support Center.

Platform Version

Cross-site scripting security added to Richtext Editor

Ready to crush complexity?

Experience the benefits of Pega Community when you log in.

Get Started with Community

Resolved Issues

View the resolved issues for a specific Platform release.

Download resolved issues

See Platform Release Notes

NOTE: Enter just the Case ID number (SR or INC) in order to find the associated Support Request.

Please note: beginning with the Pega Platform 8.7.4 Patch, the Resolved Issues have moved to the Support Center.

Platform Version

Cross-site scripting security added to Richtext Editor

Ready to crush complexity?

Experience the benefits of Pega Community when you log in.

We'd prefer it if you saw us at our best.