CVE-2026-0266
published 2026-06-10CVE-2026-0266: A cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS® software enables a malicious authenticated administrator to store a JavaScript payload…
PriorityP412low1.1CVSS 4.0
AVNACLATNPRHUIPVCNVILVANSCNSINSANEUCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUNRUVDREMUAmber
EPSS
0.21%
11.6th percentile
A cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS® software enables a malicious authenticated administrator to store a JavaScript payload using the web interface.
This issue is applicable to PAN-OS software on PA-Series and VM-Series firewalls and on Panorama (virtual and M-Series).
Cloud NGFW and Prisma® Access are not affected by this vulnerability.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| palo_alto_networks | pan-os | — | — |
| palo_alto_networks | pan-os | >= 11.1.0 < 11.1.14 | 11.1.14 |
| palo_alto_networks | pan-os | >= 11.2.0 < 11.2.11 | 11.2.11 |
| palo_alto_networks | pan-os | >= 12.1.0 < 12.1.5 | 12.1.5 |
| paloalto | cloud_ngfw | — | — |
| paloalto | pan-os | — | — |
| paloalto | prisma_access | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Palo Alto
PAN-OS: Stored Cross-Site Scripting (XSS) Vulnerability in the Web Interface
vendor_paloalto·CVSS 1.1
CVE-2026-0266 [LOW] CWE-79 PAN-OS: Stored Cross-Site Scripting (XSS) Vulnerability in the Web Interface
PAN-OS: Stored Cross-Site Scripting (XSS) Vulnerability in the Web Interface
A cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS® software enables a malicious authenticated administrator to store a JavaScript payload using the web interface.
This issue is applicable to PAN-OS software on PA-Series and VM-Series firewalls and on Panorama (virtual and M-Series).
Cloud NGFW and Prisma® Access are not affected by this vulnerability.
Affected products: Cloud NGFW, PAN-OS, Prisma Access
Solution: VERSION MINOR VERSION SUGGESTED SOLUTION
Cloud NGFW No action needed.
PAN-OS 12.1 12.1.2 through 12.1.4 Upgrade to 12.1.5 or later.
PAN-OS 11.2 11.2.0 through 11.2.10 Upgrade to 11.2.11 or later.
PAN-OS 11.1 11.1.0 through 11.1.13 Upgrade to 11.1.14 or later.
PAN-OS 10.2 10.2.0
GHSA
A cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS® software enables a malicious authenticated administrator to store a JavaScript payload using the web interface.
ghsa_unreviewed·2026-06-11
CVE-2026-0266 [LOW] CWE-79 A cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS® software enables a malicious authenticated administrator to store a JavaScript payload using the web interface.
A cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS® software enables a malicious authenticated administrator to store a JavaScript payload using the web interface.
This issue is applicable to PAN-OS software on PA-Series and VM-Series firewalls and on Panorama (virtual and M-Series).
Cloud NGFW and Prisma® Access are not affected by this vulnerability.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2026-06-10
Published