glFusion CMS 1.7.9 is affected by an access control vulnerability via /public_html/users.php.
glfusion glfusion 1.7.9