Lucene search

Symantec Web Gateway contains SQL injection and cross-site scripting vulnerabilities

🗓️ 17 Jun 2014 00:00:00Reported by CERTType

Symantec Web Gateway 5.1.1.24 has cross-site scripting and SQL injection vulnerabilities. Upgrade to version 5.2.1 or later and restrict access to trusted hosts

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 13
OpenVAS	Symantec Web Gateway Multiple Vulnerabilities -02 (Dec 2014)	23 Dec 201400:00	–	openvas
Tenable Nessus	Symantec Web Gateway < 5.2.1 Multiple Vulnerabilities (SYM14-010)	19 Jun 201400:00	–	nessus
Symantec	Symantec Web Gateway Security Issues	16 Jun 201408:00	–	symantec
Check Point Advisories	Symantec Web Gateway dbutils.php SQL Injection (CVE-2014-1651)	17 Sep 201400:00	–	checkpoint_advisories
Check Point Advisories	Symantec Web Gateway Multiple PHP Pages Cross Site Scripting (CVE-2014-1652)	21 Jul 201400:00	–	checkpoint_advisories
Cvelist	CVE-2014-1651	18 Jun 201419:00	–	cvelist
Cvelist	CVE-2014-1652	18 Jun 201419:00	–	cvelist
Prion	Sql injection	18 Jun 201419:55	–	prion
Prion	Cross site scripting	18 Jun 201419:55	–	prion
NVD	CVE-2014-1651	18 Jun 201419:55	–	nvd

Source	Link
symantec	www.symantec.com/security_response/securityupdates/detail.jsp

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

17 Jun 2014 00:00Current

9.5High risk

Vulners AI Score9.5

CVSS25.8

EPSS0.01205