CVE-2008-5932
The CVE refers to CodeAvalanche FreeForum with an improper access control flaw that exposes the web root _private/CAForum.mdb, allowing remote attackers to download the database file containing passwords. The affected component is the forum software; the underlying cause is insufficient access co...