CVE-2010-2503
Multiple cross-site scripting (XSS) vulnerabilities in Splunk 4.0 through 4.0.10 and 4.1 through 4.1.1 allow remote atta
Multiple cross-site scripting (XSS) vulnerabilities in Splunk 4.0 through 4.0.10 and 4.1 through 4.1.1 allow remote attackers to inject arbitrary web script or HTML via (1) redirects, aka SPL-31067.
(2) unspecified "user-user or user-admin" vectors, aka SPL-31084.
or (3) unspecified "user input," aka SPL-31085.
MEDIUM · CVSS 4.3
EPSS 0.00263
Monitor
- No active-exploitation, high-EPSS, or public-exploit signals - routine patching cadence
Sigma rules0
YARA rules0