Clickjacking Vulnerability in IBM Kenexa LMS on Cloud 13.1 and 13.2 - 13.2.4

Clickjacking Vulnerability in IBM Kenexa LMS on Cloud 13.1 and 13.2 - 13.2.4

CVE-2016-8911 · LOW Severity

AV:N/AC:M/AU:S/C:N/I:P/A:N

IBM Kenexa LMS on Cloud 13.1 and 13.2 - 13.2.4 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against the victim.

Learn more about our Web App Pen Testing.