← back
CVE-2010-0115

CVE-2010-0115

EPSS 2.4%
SQL injection vulnerability in login.php in the GUI management console in Symantec Web Gateway 4.5 before 4.5.0.376 allows remote attackers to execute arbitrary SQL commands via the USERNAME parameter.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://osvdb.org/70415http://secunia.com/advisories/42878https://exchange.xforce.ibmcloud.com/vulnerabilities/64658http://www.securityfocus.com/bid/45742http://www.securitytracker.com/id?1024958http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2011&suid=20110112_00http://www.vupen.com/english/advisories/2011/0088http://www.zerodayinitiative.com/advisories/ZDI-11-013/