High

DATE	CVE	VULNERABILITY TITLE	RISK
2011-01-14	CVE-2010-0115	SQL Injection vulnerability in Symantec web Gateway SQL injection vulnerability in login.php in the GUI management console in Symantec Web Gateway 4.5 before 4.5.0.376 allows remote attackers to execute arbitrary SQL commands via the USERNAME parameter. network low complexity symantec CWE-89	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.