Splunk Enterprise 6.6.x < 6.6.3 / Splunk Light 6.6.x < 6.6.3 Multiple XSS
Medium Nessus Plugin ID 102731
SynopsisAn application running on the remote web server is affected by multiple cross-site scripting vulnerabilities.
DescriptionAccording to its self-reported version number, the version of Splunk running on the remote web server is Splunk Light 6.5.x prior to 6.6.3 or Splunk Enterprise 6.6.x prior to 6.6.3. It is, therefore, affected by multiple cross-site scripting (XSS) vulnerabilities.
SolutionUpgrade to Splunk Enterprise version 6.6.3 or later or Splunk Light 6.6.3 or later.