CVE-2015-9056by Jeremyin Security Bulletinson Posted on June 16, 2017 Kibana versions prior to 4.1.3 and 4.2.1 are vulnerable to a XSS attack.