source: https://www.securityfocus.com/bid/8172/info
It has been reported that a vulnerability exists in ASP-DEV Discussion Forum that exposes potentially sensitive information. Because of this, an attacker may be able to gain access to user credentials.
User credentials are stored in the sub-directory as follows:
http://www.example.com/forum/admin/