CVE-2026-6179

Stored Cross Site Scripting in NightWolf Penetration Testing Platform allows attack trigger and run malicious script in user's browser
References
Configurations

Configuration 1 (hide)

cpe:2.3:a:fptsoftware:nightwolf_penetration_testing_platform:2.1.5:*:*:*:*:*:*:*

History

07 Jul 2026, 18:29

Type Values Removed Values Added
First Time Fptsoftware nightwolf Penetration Testing Platform
Fptsoftware
CPE cpe:2.3:a:fptsoftware:nightwolf_penetration_testing_platform:2.1.5:*:*:*:*:*:*:*
References () https://bug.report.night-wolf.io/changelogsĀ - () https://bug.report.night-wolf.io/changelogsĀ - Broken Link
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 5.4

13 Apr 2026, 03:16

Type Values Removed Values Added
New CVE

Information

Published : 2026-04-13 03:16

Updated : 2026-07-07 18:29


NVD link : CVE-2026-6179

Mitre link : CVE-2026-6179

CVE.ORG link : CVE-2026-6179


JSON object : View

Products Affected

fptsoftware

  • nightwolf_penetration_testing_platform
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')