CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2015-1608

Topline Opportunity Form (aka XLS Opp form) before 2015-02-15 does not properly restrict access to database-connection strings, which allows attackers to read the cleartext version of sensitive credential and e-mail address information via unspecified vectors.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 60.1%

CVSS Severity

CVSS v2 Score 4.0

References

http://www.kb.cert.org/vuls/id/669156
http://www.kb.cert.org/vuls/id/BLUU-9RUTH4
http://www.securityfocus.com/bid/72518
http://www.kb.cert.org/vuls/id/669156
http://www.kb.cert.org/vuls/id/BLUU-9RUTH4
http://www.securityfocus.com/bid/72518

Products affected by CVE-2015-1608

Topline Systems » Opportunity Form » Version: N/A

cpe:2.3:a:topline_systems:opportunity_form:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-1608

Products

Pricing

Contact Us