The web security application running on the remote host has a SQL injection vulnerability.
Versions of Symantec Web Gateway 4.5 earlier than 220.127.116.116 are potentially affected by a SQL injection vulnerability. Input to the 'USERNAME' parameter of the 'login.php' script is not properly sanitized. A remote, unauthenticated attacker could exploit this to execute arbitrary SQL queries.
Upgrade to Symantec Web Gateway version 18.104.22.1686 or later.