Symantec

Web Gateway

35 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.4

CVE-2012-0298

  • EPSS 10.02%
  • Published 21.05.2012 20:55:17
  • Last modified 11.04.2025 00:51:21

The file-management scripts in the management GUI in Symantec Web Gateway 5.0.x before 5.0.3 allow remote attackers to (1) read or (2) delete arbitrary files via unspecified vectors.

10

CVE-2012-0297

  • EPSS 89.46%
  • Published 21.05.2012 20:55:17
  • Last modified 11.04.2025 00:51:21

The management GUI in Symantec Web Gateway 5.0.x before 5.0.3 does not properly restrict access to application scripts, which allows remote attackers to execute arbitrary code by (1) injecting crafted data or (2) including crafted data.

4.3

CVE-2012-0296

Exploit
  • EPSS 0.64%
  • Published 21.05.2012 20:55:17
  • Last modified 11.04.2025 00:51:21

Multiple cross-site scripting (XSS) vulnerabilities in the management GUI in Symantec Web Gateway 5.0.x before 5.0.3 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

7.5

CVE-2011-0549

  • EPSS 1.1%
  • Published 11.07.2011 20:55:00
  • Last modified 11.04.2025 00:51:21

SQL injection vulnerability in forget.php in the management GUI in Symantec Web Gateway 4.5.x allows remote attackers to execute arbitrary SQL commands via the username parameter.

7.5

CVE-2010-0115

  • EPSS 1.13%
  • Published 14.01.2011 23:00:44
  • Last modified 11.04.2025 00:51:21

SQL injection vulnerability in login.php in the GUI management console in Symantec Web Gateway 4.5 before 4.5.0.376 allows remote attackers to execute arbitrary SQL commands via the USERNAME parameter.