3 matches found
Splunk Enterprise 6.0.x < 6.0.14 / 6.1.x < 6.1.13 / 6.2.x < 6.2.14 / 6.3.x < 6.3.11 / 6.4.x < 6.4.8 / 6.5.x < 6.5.3 or Splunk Light < 6.6.0 Multiple Vulnerabilities
According to its self-reported version number, the version of Splunk running on the remote web server is Splunk Light prior to 6.6.0 or Splunk Enterprise 6.0.x prior to 6.0.14, 6.1.x prior to 6.1.13, 6.2.x prior to 6.2.14, 6.3.x prior to 6.3.11, 6.4.x prior to 6.4.8, or 6.5.x prior to 6.5.3. It i...
CVE-2018-7427
CVE-2018-7427 is an XSS vulnerability in Splunk Web affecting Splunk Enterprise 6.0.x up to 6.0.14, 6.1.x up to 6.1.13, 6.2.x up to 6.2.14, 6.3.x up to 6.3.10, 6.4.x up to 6.4.7, 6.5.x up to 6.5.3, and Splunk Light up to 6.6.0. The issue arises from improper validation of user-supplied input befo...
CVE-2018-7427
Cross-site scripting XSS vulnerability in Splunk Web in Splunk Enterprise 6.0.x before 6.0.14, 6.1.x before 6.1.13, 6.2.x before 6.2.14, 6.3.x before 6.3.10, 6.4.x before 6.4.7, and 6.5.x before 6.5.3; and Splunk Light before 6.6.0 allows remote attackers to inject arbitrary web script or HTML vi...