CVE-2015-6514 Information

Description

Cross-site scripting (XSS) vulnerability in the Dashboard in Splunk Enterprise 6.2.x before 6.2.4 and Splunk Light 6.2.x before 6.2.4 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

Reference

http://www.securitytracker.com/id/1032859 http://www.splunk.com/view/SP-CAAAN7C