Quicksilver Forums before 1.4.1 allows remote attackers to obtain sensitive information by causing unspecified connection errors, which reveals the database password in the resulting error message.Referenceshttp://secunia.com/advisories/26998http://www.securityfocus.com/bid/25887http://forums.quicksilverforums.com/index.php?a=topic&t=1332https://exchange.xforce.ibmcloud.com/vulnerabilities/36891
