Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
splunk splunk 5.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-6771
Directory traversal vulnerability in the collect script in Splunk prior to 5.0.5 allows remote malicious users to execute arbitrary commands via a .. (dot dot) in the file parameter. NOTE: this issue was SPLIT per ADT2 due to different vulnerability types. CVE-2013-7394 is for th...
Splunk Splunk
Splunk Splunk 5.0.3
Splunk Splunk 5.0.2
Splunk Splunk 5.0.1
Splunk Splunk 5.0
NA
CVE-2013-7394
The "runshellscript echo.sh" script in Splunk prior to 5.0.5 allows remote authenticated users to execute arbitrary commands via a crafted string. NOTE: this issue was SPLIT from CVE-2013-6771 per ADT2 due to different vulnerability types.
Splunk Splunk
Splunk Splunk 5.0.2
Splunk Splunk 5.0.1
Splunk Splunk 5.0
Splunk Splunk 5.0.3
NA
CVE-2012-6447
Cross-site scripting (XSS) vulnerability in Splunk Web in Splunk 5.0.0 up to and including 5.0.2 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Splunk Splunk 5.0
Splunk Splunk 5.0.1
Splunk Splunk 5.0.2
NA
CVE-2014-2578
Cross-site scripting (XSS) vulnerability in Splunk Web in Splunk prior to 5.0.8 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Splunk Splunk 5.0.4
Splunk Splunk 5.0.5
Splunk Splunk 5.0.6
Splunk Splunk
Splunk Splunk 5.0.2
Splunk Splunk 5.0.3
Splunk Splunk 5.0
Splunk Splunk 5.0.1
NA
CVE-2014-8301
Cross-site scripting (XSS) vulnerability in Splunk Web in Splunk Enterprise 5.0.x prior to 5.0.10 allows remote malicious users to inject arbitrary web script or HTML via the HTTP Referer header.
Splunk Splunk 5.0.2
Splunk Splunk 5.0.4
Splunk Splunk 5.0.6
Splunk Splunk 5.0.7
Splunk Splunk 5.0.8
Splunk Splunk 5.0.9
Splunk Splunk 5.0
Splunk Splunk 5.0.1
Splunk Splunk 5.0.3
Splunk Splunk 5.0.5
NA
CVE-2014-8302
Cross-site scripting (XSS) vulnerability in Splunk Web in Splunk Enterprise 6.1.x prior to 6.1.4, 6.0.x prior to 6.0.6, and 5.0.x prior to 5.0.10 allows remote malicious users to inject arbitrary web script or HTML via vectors related to dashboard.
Splunk Splunk 5.0
Splunk Splunk 5.0.2
Splunk Splunk 5.0.9
Splunk Splunk 6.0.0
Splunk Splunk 6.0.5
Splunk Splunk 6.1.1
Splunk Splunk 6.1.3
Splunk Splunk 6.0.1
Splunk Splunk 6.0.2
Splunk Splunk 6.0.3
Splunk Splunk 6.0.4
Splunk Splunk 5.0.4
Splunk Splunk 5.0.5
Splunk Splunk 5.0.6
Splunk Splunk 5.0.7
Splunk Splunk 5.0.1
Splunk Splunk 5.0.3
Splunk Splunk 5.0.8
Splunk Splunk 6.0
Splunk Splunk 6.1
Splunk Splunk 6.1.2
NA
CVE-2014-5466
Cross-site scripting (XSS) vulnerability in the Dashboard in Splunk Web in Splunk Enterprise 6.1.x prior to 6.1.4, 6.0.x prior to 6.0.7, and 5.0.x prior to 5.0.10 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Splunk Splunk 5.0.4
Splunk Splunk 5.0.2
Splunk Splunk 6.0.2
Splunk Splunk 6.0.4
Splunk Splunk 6.1.4
Splunk Splunk 5.0.9
Splunk Splunk 5.0.8
Splunk Splunk 5.0.7
Splunk Splunk 5.0.6
Splunk Splunk 6.0.6
Splunk Splunk 6.1
Splunk Splunk 6.1.1
Splunk Splunk 6.1.2
Splunk Splunk 5.0.1
Splunk Splunk 5.0
Splunk Splunk 6.0
Splunk Splunk 6.0.1
Splunk Splunk 5.0.5
Splunk Splunk 5.0.3
Splunk Splunk 6.0.3
Splunk Splunk 6.0.5
Splunk Splunk 6.1.3
9.8
CVSSv3
CVE-2016-10126
Splunk Web in Splunk Enterprise 5.0.x prior to 5.0.17, 6.0.x prior to 6.0.13, 6.1.x prior to 6.1.12, 6.2.x prior to 6.2.12, 6.3.x prior to 6.3.8, and 6.4.x prior to 6.4.4 allows remote malicious users to conduct HTTP request injection attacks and obtain sensitive REST API authent...
Splunk Splunk 5.0.1
Splunk Splunk 5.0.10
Splunk Splunk 5.0.6
Splunk Splunk 5.0.7
Splunk Splunk 5.0.13
Splunk Splunk 5.0.14
Splunk Splunk 5.0.2
Splunk Splunk 5.0.3
Splunk Splunk 5.0.11
Splunk Splunk 5.0.12
Splunk Splunk 5.0.8
Splunk Splunk 5.0.9
Splunk Splunk 5.0.15
Splunk Splunk 5.0.16
Splunk Splunk 5.0.0
Splunk Splunk 5.0.4
Splunk Splunk 5.0.5
Splunk Splunk 6.0.9
Splunk Splunk 6.0.10
Splunk Splunk 6.0.4
Splunk Splunk 6.0.5
Splunk Splunk 6.0.0
6.5
CVSSv3
CVE-2017-5880
Splunk Web in Splunk Enterprise versions 6.5.x prior to 6.5.2, 6.4.x prior to 6.4.5, 6.3.x prior to 6.3.9, 6.2.x prior to 6.2.13, 6.1.x prior to 6.1.12, 6.0.x prior to 6.0.13, 5.0.x prior to 5.0.17 and Splunk Light versions prior to 6.5.2 allows remote authenticated users to caus...
Splunk Splunk 5.0.5
Splunk Splunk 5.0.3
Splunk Splunk 5.0.13
Splunk Splunk 5.0.11
Splunk Splunk 5.0.1
Splunk Splunk 6.0.1
Splunk Splunk 6.0.3
Splunk Splunk 6.0.10
Splunk Splunk 6.0.12
Splunk Splunk 6.1.10
Splunk Splunk 6.1.4
Splunk Splunk 6.1.6
Splunk Splunk 6.2.4
Splunk Splunk 6.2.6
Splunk Splunk 6.2.1
Splunk Splunk 6.2.2
Splunk Splunk 6.3.6
Splunk Splunk 6.3.8
Splunk Splunk 6.4.4
Splunk Splunk 6.5.1
Splunk Splunk 5.0.2
Splunk Splunk 5.0.16
NA
CVE-2015-6515
Cross-site scripting (XSS) vulnerability in Splunk Web in Splunk Enterprise 6.2.x prior to 6.2.4, 6.1.x prior to 6.1.8, 6.0.x prior to 6.0.9, and 5.0.x prior to 5.0.13 and Splunk Light 6.2.x prior to 6.2.4 allows remote malicious users to inject arbitrary web script or HTML via a...
Splunk Splunk 5.0.12
Splunk Splunk 6.0.0
Splunk Splunk 6.0.1
Splunk Splunk 6.0.2
Splunk Splunk 6.1.7
Splunk Splunk 6.2.0
Splunk Splunk 6.2.3
Splunk Splunk 6.2.2
Splunk Splunk 5.0.4
Splunk Splunk 5.0.5
Splunk Splunk 5.0.6
Splunk Splunk 5.0.7
Splunk Splunk 6.0.8
Splunk Splunk 6.1.0
Splunk Splunk 6.1.1
Splunk Splunk 6.1.2
Splunk Splunk 5.0.1
Splunk Splunk 5.0.3
Splunk Splunk 5.0.8
Splunk Splunk 5.0.10
Splunk Splunk 6.0.4
Splunk Splunk 6.0.6
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-21987
buffer overflow
CVE-2024-28890
CVE-2024-27574
CVE-2024-27347
CVE-2024-31450
privilege
SSTI
CVE-2024-31666
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »