VYPR
Unrated severityNVD Advisory· Published Oct 10, 2025· Updated Feb 26, 2026

Kibana Stored Cross-Site Scripting (XSS)

CVE-2025-25018

Description

Improper Neutralization of Input During Web Page Generation in Kibana can lead to stored Cross-Site Scripting (XSS)

Affected products

6

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.