CVE-2015-1608 Information

Description

Topline Opportunity Form (aka XLS Opp form) before 2015-02-15 does not properly restrict access to database-connection strings which allows attackers to read the cleartext version of sensitive credential and e-mail address information via unspecified vectors.

Reference

http://www.kb.cert.org/vuls/id/669156 http://www.kb.cert.org/vuls/id/BLUU-9RUTH4 http://www.securityfocus.com/bid/72518