← back
CVE-2010-2429

CVE-2010-2429

EPSS 1.6%
Cross-site scripting (XSS) vulnerability in Splunk 4.0 through 4.1.2, when Internet Explorer is used, allows remote attackers to inject arbitrary web script or HTML via the HTTP Referer in a "404 Not Found" response.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://secunia.com/advisories/40187https://exchange.xforce.ibmcloud.com/vulnerabilities/59517http://www.osvdb.org/65623http://www.splunk.com/view/SP-CAAAFHY