CVE-2025-67930

Name of the Vulnerable Software and Affected Versions eHive Search versions through 2.5.0

Description The software contains a flaw related to improper input handling during web page generation, specifically a Reflected Cross-site Scripting issue. This allows for the injection of malicious scripts through web pages. The vulnerability exists due to insufficient sanitization of user-supplied input. The affected component is ehive-search.

Recommendations Update eHive Search to a version later than 2.5.0.