Barix Instreamer v04.06 and v04.05 contains a stored cross-site scripting (XSS) vulnerability in the Web UI Configuration Streaming Destination input.
https://help.barix.com/instreamer/user-manual
https://github.com/iyadalkhatib98/My_CVES/tree/main/CVE-2025-65230