Stored Cross Site Scripting in NightWolf Penetration Testing Platform allows attack trigger and run malicious script in user's browser
References
| Link | Resource |
|---|---|
| https://bug.report.night-wolf.io/changelogs | Broken Link |
Configurations
Configuration 1 (hide)
|
History
07 Jul 2026, 18:29
| Type | Values Removed | Values Added |
|---|---|---|
| First Time |
Fptsoftware nightwolf Penetration Testing Platform
Fptsoftware |
|
| CPE | cpe:2.3:a:fptsoftware:nightwolf_penetration_testing_platform:2.1.5:*:*:*:*:*:*:* | |
| References | () https://bug.report.night-wolf.io/changelogsĀ - Broken Link | |
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 5.4 |
13 Apr 2026, 03:16
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2026-04-13 03:16
Updated : 2026-07-07 18:29
NVD link : CVE-2026-6179
Mitre link : CVE-2026-6179
CVE.ORG link : CVE-2026-6179
JSON object : View
Products Affected
fptsoftware
- nightwolf_penetration_testing_platform
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
