CVE-2025-32413

Name of the Vulnerable Software and Affected Versions: Vulnerability-Lookup versions prior to 2.7.1

Description: The issue allows stored XSS via a user bio in the website/web/views/user.py file. This can potentially lead to malicious script execution when a user views the affected bio.

Recommendations: For versions prior to 2.7.1, consider disabling the user bio feature in website/web/views/user.py until a patch is available. Restrict access to the user bio section to minimize the risk of exploitation. Avoid displaying user bios from untrusted sources in the affected API endpoint until the issue is resolved.