CVE-2025-30867

Name of the Vulnerable Software and Affected Versions SearchIQ versions n/a through 4.7

Description The issue is related to improper neutralization of input during web page generation, also known as 'Cross-site Scripting'. This allows for Stored XSS in SearchIQ.

Recommendations For versions n/a through 4.7, update to a version that contains a fix for this issue. As a temporary workaround, consider restricting user input to prevent malicious scripts from being injected into the web page. Avoid using the vulnerable SearchIQ functionality until the issue is resolved.