Arbitrary SQL Command Execution Vulnerability in Symantec Web Gateway (SWG) Management Console

Arbitrary SQL Command Execution Vulnerability in Symantec Web Gateway (SWG) Management Console

CVE-2014-1650 · MEDIUM Severity

AV:A/AC:L/AU:S/C:P/I:P/A:P

SQL injection vulnerability in user.php in the management console in Symantec Web Gateway (SWG) before 5.2.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

Learn more about our Web App Pen Testing.