We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
In Splunk Enterprise versions below 8.1.13, 8.2.10, and 9.0.4, a View allows for Cross-Site Scripting (XSS) in an extensible mark-up language (XML) View through the ‘layoutPanel’ attribute in the ‘module’ tag’.
Reserved 2023-01-10 | Published 2023-02-14 | Updated 2025-02-28 | Assigner SplunkDanylo Dmytriiev (DDV_UA)
advisory.splunk.com/advisories/SVD-2023-0203
research.splunk.com/.../9ac2bfea-a234-4a18-9d37-6d747e85c2e4
Support options