7.5
CVSSv2

CVE-2011-0549

Published: 11/07/2011 Updated: 17/08/2017
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Summary

SQL injection vulnerability in forget.php in the management GUI in Symantec Web Gateway 4.5.x allows remote malicious users to execute arbitrary SQL commands via the username parameter.

Most Upvoted Vulmon Research Post

There is no Researcher post for this vulnerability
Would you like to share something about it? Sign up now to share your knowledge with the community.
Vulnerable Product Search on Vulmon Subscribe to Product

symantec web gateway 4.5

symantec web gateway 4.5.0.326

symantec web gateway 4.5.1.34

symantec web gateway 4.5.1.44

symantec web gateway 4.5.2.37

symantec web gateway 4.5.2.65

symantec web gateway 4.5.2.72

symantec web gateway 4.5.3.38

symantec web gateway 4.5.4.9

Vendor Advisories

Symantec’s Web Gateway management GUI is susceptible to blind SQL injection which could result in the injection of arbitrary code into the backend database ...