Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm kenexa lms on cloud 5.1 vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2016-5939
IBM Kenexa LMS on Cloud is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the malicious user to view, add, modify or delete information in the back-end database.
Ibm Kenexa Lms On Cloud 4.2
Ibm Kenexa Lms On Cloud 4.2.2
Ibm Kenexa Lms On Cloud 4.2.3
Ibm Kenexa Lms On Cloud 4.2.4
Ibm Kenexa Lms On Cloud 5.0
Ibm Kenexa Lms On Cloud 4.1
Ibm Kenexa Lms On Cloud 5.2
Ibm Kenexa Lms On Cloud 5.1
2.1
CVSSv2
CVE-2016-5938
IBM Kenexa LMS on Cloud allows web pages to be stored locally which can be read by another user on the system.
Ibm Kenexa Lms 4.2.2
Ibm Kenexa Lms 5.2
Ibm Kenexa Lms 4.2.3
Ibm Kenexa Lms 4.2.4
Ibm Kenexa Lms 5.0
Ibm Kenexa Lms 5.1
Ibm Kenexa Lms 4.2
Ibm Kenexa Lms 4.1
6.5
CVSSv2
CVE-2016-8931
IBM Kenexa LMS on Cloud could allow a remote malicious user to upload arbitrary files, which could allow the malicious user to execute arbitrary code on the vulnerable server.
Ibm Kenexa Lms 4.2.2
Ibm Kenexa Lms 4.2.3
Ibm Kenexa Lms 4.2.4
Ibm Kenexa Lms 5.0
Ibm Kenexa Lms 4.2
Ibm Kenexa Lms 5.1
Ibm Kenexa Lms 4.1
Ibm Kenexa Lms 5.2
6.5
CVSSv2
CVE-2016-8932
IBM Kenexa LMS on Cloud could allow a remote malicious user to upload arbitrary files, which could allow the malicious user to execute arbitrary code on the vulnerable server.
Ibm Kenexa Lms 4.1
Ibm Kenexa Lms 4.2
Ibm Kenexa Lms 4.2.2
Ibm Kenexa Lms 4.2.3
Ibm Kenexa Lms 4.2.4
Ibm Kenexa Lms 5.1
Ibm Kenexa Lms 5.0
Ibm Kenexa Lms 5.2
3.5
CVSSv2
CVE-2016-5941
IBM Kenexa LMS on Cloud could allow a remote malicious user to traverse directories on the system. An attacker could send a specially-crafted URL request containing dot dot sequences (/../) to view arbitrary files on the system.
Ibm Kenexa Lms 4.2
Ibm Kenexa Lms 4.2.2
Ibm Kenexa Lms 4.2.3
Ibm Kenexa Lms 5.0
Ibm Kenexa Lms 5.2
Ibm Kenexa Lms 4.1
Ibm Kenexa Lms 4.2.4
Ibm Kenexa Lms 5.1
4
CVSSv2
CVE-2016-8933
IBM Kenexa LMS on Cloud could allow a remote malicious user to traverse directories on the system. An attacker could send a specially-crafted URL request containing dot dot sequences (/../) to view arbitrary files on the system.
Ibm Kenexa Lms 4.2
Ibm Kenexa Lms 4.2.2
Ibm Kenexa Lms 4.2.3
Ibm Kenexa Lms 4.1
Ibm Kenexa Lms 5.0
Ibm Kenexa Lms 5.2
Ibm Kenexa Lms 4.2.4
Ibm Kenexa Lms 5.1
5.5
CVSSv2
CVE-2016-8929
IBM Kenexa LMS on Cloud is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the malicious user to view, add, modify or delete information in the back-end database.
Ibm Kenexa Lms 4.2
Ibm Kenexa Lms 4.2.2
Ibm Kenexa Lms 4.2.3
Ibm Kenexa Lms 4.2.4
Ibm Kenexa Lms 5.1
Ibm Kenexa Lms 4.1
Ibm Kenexa Lms 5.0
Ibm Kenexa Lms 5.2
6.5
CVSSv2
CVE-2016-8928
IBM Kenexa LMS on Cloud is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the malicious user to view, add, modify or delete information in the back-end database.
Ibm Kenexa Lms 4.2.3
Ibm Kenexa Lms 5.0
Ibm Kenexa Lms 4.2
Ibm Kenexa Lms 4.2.2
Ibm Kenexa Lms 5.2
Ibm Kenexa Lms 4.1
Ibm Kenexa Lms 4.2.4
Ibm Kenexa Lms 5.1
6.5
CVSSv2
CVE-2016-8930
IBM Kenexa LMS on Cloud is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the malicious user to view, add, modify or delete information in the back-end database.
Ibm Kenexa Lms 4.2.3
Ibm Kenexa Lms 4.2.4
Ibm Kenexa Lms 5.0
Ibm Kenexa Lms 5.1
Ibm Kenexa Lms 4.2
Ibm Kenexa Lms 4.1
Ibm Kenexa Lms 4.2.2
Ibm Kenexa Lms 5.2
3.5
CVSSv2
CVE-2016-5940
IBM Kenexa LMS on Cloud is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
Ibm Kenexa Lms 5.1
Ibm Kenexa Lms 5.2
Ibm Kenexa Lms 4.1
Ibm Kenexa Lms 4.2
Ibm Kenexa Lms 4.2.3
Ibm Kenexa Lms 5.0
Ibm Kenexa Lms 4.2.2
Ibm Kenexa Lms 4.2.4
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »
Vulmon