Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.3
CVSSv2

CVE-2014-8380

Published: 21/10/2014 Updated: 03/09/2017
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
VMScore: 435
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Subscribe to Splunk

Vulnerability Summary

Cross-site scripting (XSS) vulnerability in Splunk 6.1.1 allows remote malicious users to inject arbitrary web script or HTML via the HTTP Referer Header in a "404 Not Found" response. NOTE: this vulnerability might exist because of a CVE-2010-2429 regression.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

splunk splunk 6.1.1

Exploits

Exploit DB: Splunk 6.1.1 - 'Referer' Header Cross-Site Scripting
# Exploit Title: Splunk 'Referer' Header Cross Site Scripting Vulnerability # Date: 7th January 2017 # Exploit Author: justpentest # Vendor Homepage: wwwsplunkcom/ # Version: Splunk 611 other versions may also be affected # Contact: transform2secure@gmailcom Source: wwwsecurityfocuscom/bid/67655/info 1) Description: Splunk ...

References

CWE-79http://www.securityfocus.com/bid/67655http://packetstormsecurity.com/files/126813/Splunk-6.1.1-Cross-Site-Scripting.htmlhttps://www.exploit-db.com/exploits/40997/https://nvd.nist.govhttps://www.exploit-db.com/exploits/40997/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32744privilege escalationCVE-2024-30253CVE-2024-3914cross-site scriptingCVE-2024-31497CVE-2024-3400CVE-2024-32341hardcoded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook