SearchBlox has patched several serious vulnerabilities in its flagship product. The company has released version 8.2 of the product to address the bugs. The most serious of the bugs are a handful of XSS vulnerabilities. One vulnerability allows an unauthenticated remote attacker to upload arbitrary files to portions of the SearchBlx server without restriction. Another flaw was reported in 2013 and the company fixed it in a previous version, but it was later found to be vulnerable later. The vulnerabilities were report to the CERT/CC at Carnegie Mellon University.
Source: https://threatpost.com/searchblox-fixes-xss-file-upload-flaws/112278/