https://www.exploit-db.com/exploits/22895

漏洞细节尚未披露

source: http://www.securityfocus.com/bid/8172/info

It has been reported that a vulnerability exists in ASP-DEV Discussion Forum that exposes potentially sensitive information. Because of this, an attacker may be able to gain access to user credentials.

User credentials are stored in the sub-directory as follows:

http://www.example.com/forum/admin/