source: https://www.securityfocus.com/bid/8172/info

It has been reported that a vulnerability exists in ASP-DEV Discussion Forum that exposes potentially sensitive information. Because of this, an attacker may be able to gain access to user credentials.

User credentials are stored in the sub-directory as follows:

http://www.example.com/forum/admin/