CVE-2012-2306

Name of the Vulnerable Software and Affected Versions Drupal Addressbook module versions 6.x-4.2 and earlier

Description A SQL injection issue allows remote attackers to execute arbitrary SQL commands.

Recommendations For versions 6.x-4.2 and earlier, update to a version later than 6.x-4.2 to resolve the issue.