Vulnerability Details CVE-2007-5172
Quicksilver Forums before 1.4.1 allows remote attackers to obtain sensitive information by causing unspecified connection errors, which reveals the database password in the resulting error message.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 54.4%
CVSS Severity
CVSS v2 Score 5.0
References
- http://forums.quicksilverforums.com/index.php?a=topic&t=1332
- http://secunia.com/advisories/26998
- http://www.securityfocus.com/bid/25887
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36891
- http://forums.quicksilverforums.com/index.php?a=topic&t=1332
- http://secunia.com/advisories/26998
- http://www.securityfocus.com/bid/25887
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36891
Products affected by CVE-2007-5172
-
cpe:2.3:a:quicksilver_forums:quicksilver_forums:*