Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2010-0115

SQL injection vulnerability in login.php in the GUI management console in Symantec Web Gateway 4.5 before 4.5.0.376 allows remote attackers to execute arbitrary SQL commands via the USERNAME parameter.

  • Published: Jan 15, 2011
  • Updated: Apr 13, 2023
  • CVE: CVE-2010-0115
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/Au:N/C:P/I:P/A:P

CWEs:

OWASP TOP 10:

Software From Fixed in
symantec / web_gateway 4.5 4.5.x
symantec / web_gateway 4.5.0.325 4.5.0.325.x
symantec / web_gateway 4.5.0.326 4.5.0.326.x
symantec / web_gateway 4.5.0.327 4.5.0.327.x