Code injection

Topline Opportunity Form aka XLS Opp form before 2015-02-15 does not properly restrict access to database-connection strings, which allows attackers to read the cleartext version of sensitive credential and e-mail address information via unspecified vectors...

CVE-2015-1608

Topline Opportunity Form aka XLS Opp form before 2015-02-15 does not properly restrict access to database-connection strings, which allows attackers to read the cleartext version of sensitive credential and e-mail address information via unspecified vectors...

CVE-2015-1608

CVE-2015-1608 affects the Topline Opportunity Form (XLS Opp form). The underlying issue is improper access restriction to database-connection strings, allowing an attacker to read cleartext credentials and email addresses via unspecified vectors. Connected sources corroborate the same description...

Topline Systems Opportunity Form Information Disclosure Vulnerability

The Topline Systems Opportunity Form is an Excel spreadsheet containing connection strings to enable macros for public-facing databases. An information disclosure vulnerability exists in Topline Systems Opportunity Form, which can be exploited by an attacker to obtain sensitive information...