VYPR
High severity7.6NVD Advisory· Published Feb 1, 2017· Updated Jun 17, 2026

CVE-2016-8930

CVE-2016-8930

Description

IBM Kenexa LMS on Cloud is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

10
  • cpe:2.3:a:ibm:kenexa_lms:4.1:*:*:*:*:*:*:*+ 8 more
    • cpe:2.3:a:ibm:kenexa_lms:4.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:kenexa_lms:4.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:kenexa_lms:4.2.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:kenexa_lms:4.2.3:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:kenexa_lms:4.2.4:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:kenexa_lms:5.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:kenexa_lms:5.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:kenexa_lms:5.2:*:*:*:*:*:*:*
    • (no CPE)
  • IBM Corporation/Kenexa LMS on Cloudv5
    Range: 13.0

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.