CVE-2012-1670
admin/index.php in PHP Grade Book before 1.9.5 BETA allows remote attackers to read the database via a SaveSQL action.
Date published : 2012-03-31
http://www.securityfocus.com/bid/52686
http://archives.neohapsis.com/archives/bugtraq/2012-03/0115.html