CVE-2012-1911
CVE-2012-1911 affects PHP Address Book 6.2.12 and earlier. It allows remote attackers to execute arbitrary SQL commands via (1) the to_group parameter to group.php or (2) the id parameter to vcard.php; the edit.php vector is covered by CVE-2008-2565. This is a concrete vulnerability with specifie...