XSS in Palo Alto Networks Cloud Ngfw

CVE-2026-0256

A stored cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS® software enables a malicious authenticated administrator to store a JavaScript payload using the web interface. This issue is applicable to PAN-OS software o…

Vulnerability class: XSS (Cross-Site Scripting)

EPSS: 0.001 (18.0th percentile) — read the EPSS interpretation.