Unrated severityNVD Advisory· Published Oct 10, 2025· Updated Feb 26, 2026
Kibana Stored Cross-Site Scripting (XSS)
CVE-2025-25018
Description
Improper Neutralization of Input During Web Page Generation in Kibana can lead to stored Cross-Site Scripting (XSS)
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
0No linked articles in our index yet.