Vulnerabilities > Symantec > WEB Gateway > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2012-07-23 | CVE-2012-2957 | Permissions, Privileges, and Access Controls vulnerability in Symantec web Gateway The management console in Symantec Web Gateway 5.0.x before 5.0.3.18 allows local users to gain privileges by modifying files, related to a "file inclusion" issue. | 7.2 |
| 2012-07-23 | CVE-2012-2574 | SQL Injection vulnerability in Symantec web Gateway SQL injection vulnerability in the management console in Symantec Web Gateway 5.0.x before 5.0.3.18 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, related to a "blind SQL injection" issue. | 7.5 |
| 2011-07-11 | CVE-2011-0549 | SQL Injection vulnerability in Symantec web Gateway SQL injection vulnerability in forget.php in the management GUI in Symantec Web Gateway 4.5.x allows remote attackers to execute arbitrary SQL commands via the username parameter. | 7.5 |
| 2011-01-14 | CVE-2010-0115 | SQL Injection vulnerability in Symantec web Gateway SQL injection vulnerability in login.php in the GUI management console in Symantec Web Gateway 4.5 before 4.5.0.376 allows remote attackers to execute arbitrary SQL commands via the USERNAME parameter. | 7.5 |