admin/index.php in PHP Grade Book before 1.9.5 BETA allows remote attackers to read the database via a SaveSQL action.
archives.neohapsis.com/archives/bugtraq/2012-03/0115.html
downloads.sourceforge.net/project/php-gradebook/phpGradeBook%20-%20BETA/1.9.5/phpGradeBook1.9.5.zip
osvdb.org/80311
secunia.com/advisories/48524
www.exploit-db.com/exploits/18647/
www.securityfocus.com/bid/52686
exchange.xforce.ibmcloud.com/vulnerabilities/74292