Unrated severityNVD Advisory· Published Mar 31, 2012· Updated Apr 29, 2026
CVE-2012-1670
CVE-2012-1670
Description
admin/index.php in PHP Grade Book before 1.9.5 BETA allows remote attackers to read the database via a SaveSQL action.
Affected products
2cpe:2.3:a:phpgradebook:php_grade_book:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:phpgradebook:php_grade_book:*:*:*:*:*:*:*:*range: <=1.9.4
- cpe:2.3:a:phpgradebook:php_grade_book:1.9.3:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
7- downloads.sourceforge.net/project/php-gradebook/phpGradeBook%20-%20BETA/1.9.5/phpGradeBook1.9.5.zipnvdPatch
- www.exploit-db.com/exploits/18647/nvdExploit
- archives.neohapsis.com/archives/bugtraq/2012-03/0115.htmlnvd
- osvdb.org/80311nvd
- secunia.com/advisories/48524nvd
- www.securityfocus.com/bid/52686nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/74292nvd
News mentions
0No linked articles in our index yet.