CVE-2007-5172 Information

Description

Quicksilver Forums before 1.4.1 allows remote attackers to obtain sensitive information by causing unspecified connection errors which reveals the database password in the resulting error message.

Reference

http://forums.quicksilverforums.com/index.php?a=topic&t=1332 http://secunia.com/advisories/26998 http://www.securityfocus.com/bid/25887 https://exchange.xforce.ibmcloud.com/vulnerabilities/36891