Splunk Enterprise captures, indexes and correlates real-time data in a searchable repository from which it can generate graphs, reports, alerts, dashboards and visualizations.
Splunk Enterprise is affected by multiple cross site scripting vulnerabilities:
Cross Site Scripting in Splunk Web (SPL-117191)
Cross Site Scripting in Splunk Web (SPL-115927)
Splunk Enterprise versions 6.4.x prior to 6.4.1 and 6.3.x before 6.3.5
Splunk Light versions 6.4.x prior to 6.4.1 and 6.3.x before 6.3.5
QID Detection Logic(Remote)
It checks for vulnerable version of Splunk Enterprise and Light.