8 matches found
CVE-2025-3014 Insecure direct object references (IDOR) in NightWolf Penetration Platform
Insecure Direct Object References IDOR in access control in Tracking 2.1.4 on NightWolf Penetration Testing allows an attacker to access via manipulating request parameters or object references...
CVE-2025-3014 Insecure direct object references (IDOR) in NightWolf Penetration Platform
Insecure Direct Object References IDOR in access control in Tracking 2.1.4 on NightWolf Penetration Testing allows an attacker to access via manipulating request parameters or object references...
CVE-2025-3014
The CVE-2025-3014 entry concerns NightWolf Penetration Testing Tracking version 2.1.4, where an Improper Access Control leads to Insecure Direct Object References (IDOR). The vulnerability arises from allowing manipulation of request parameters or object references to access unauthorized data. Pu...
CVE-2025-3013
CVE-2025-3013 affects NightWolf Penetration Testing Customer Portal prior to 2.1.4 (NightWolf Penetration Platform). The issue is an Insecure Direct Object References (IDOR) in access control, enabling an attacker to access by manipulating request parameters or object references. According to the...
CVE-2025-3013 Insecure direct object references (IDOR) in NightWolf Penetration Platform
Insecure Direct Object References IDOR in access control in Customer Portal before 2.1.4 on NightWolf Penetration Testing allows an attacker to access via manipulating request parameters or object references...
CVE-2025-3013 Insecure direct object references (IDOR) in NightWolf Penetration Platform
Insecure Direct Object References IDOR in access control in Customer Portal before 2.1.4 on NightWolf Penetration Testing allows an attacker to access via manipulating request parameters or object references...
CVE-2025-31165 Cross Site Scripting in NightWolf Penetration Platform
Cross-Site Scripting XSS vulnerability in the Logbug module of NightWolf Penetration Testing Platform 1.2.2 allows attackers to execute JavaScript through the markdown editor feature...
CVE-2025-31165 Cross Site Scripting in NightWolf Penetration Platform
Cross-Site Scripting XSS vulnerability in the Logbug module of NightWolf Penetration Testing Platform 1.2.2 allows attackers to execute JavaScript through the markdown editor feature...