CVE

CVE-2016-5941 (kenexa_lms)

admin

CVE-2016-5941 (kenexa_lms)

IBM Kenexa LMS on Cloud could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing dot dot sequences (/../) to view arbitrary files on the system.

Source: CVE-2016-5941 (kenexa_lms)

Exit mobile version