Kc57

**Name of the Vulnerable Software and Affected Versions** Symantec Web Gateway version 5.0.3.18 **Description** A SQL injection issue allows remote attackers to execute arbitrary SQL commands. The issue is related to the `groupid` parameter in the `spywall/includes/deptUploads data.php` file. **Recommendations** For Symantec Web Gateway version 5.0.3.18, avoid using the `groupid` parameter in the affected file until the issue is resolved. As a temporary workaround, consider restricting access to the `deptUploads data.php` file to minimize the risk of exploitation.