[原文]Microsoft FrontPage stores form results in a default location in /_private/form_results.txt, which is world-readable and accessible in the document root, which allows remote attackers to read possibly sensitive information submitted by other users.
Microsoft FrontPage form_results Information Disclosure
Loss of Confidentiality
Microsoft FrontPage contains a flaw that may lead to an unauthorized information disclosure. The issue is due to "form_results.[txt|htm|html]" being accessable to anyone via the web. This file contains user supplied input and may contain logins, passwords or other sensitive information.
Currently, there are no known upgrades or patches to correct this issue. It is possible to correct the flaw by implementing the following workaround: Verify these files are not present, or permissioned so that remote users can not access them.