CVE-2009-1051
CVE-2009-1051 affects FubarForum 1.6 and earlier. The issue is improper access control: sensitive data is stored under the web root, enabling remote attackers to download a database containing user credentials via a direct request for user.tsv. The provided documents confirm the vulnerable compon...