CVE-2012-6516
CVE-2012-6516 describes a SQL injection in the PHP Ticket System Beta 1 where an attacker can craft input to the index.php q parameter to execute arbitrary SQL commands. The root cause is unsafe handling/concatenation of user input leading to a complete database command execution path. Impact: ex...