IBM Kenexa LCMS Premier on Cloud SQL Injection Vulnerability

IBM Kenexa LCMS Premier on Cloud is an adjustable Learning Content Management System LCMS for developing, maintaining, and delivering effective employee training from IBM USA. IBM Kenexa LCMS Premier on Cloud suffers from a SQL injection vulnerability that could allow a remote attacker to view,...

CVE-2016-5948

IBM Kenexa LCMS Premier on Cloud is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session...