it is illegal to access a public file that contain private information?

There is a website, that I was testing to see if they have any vulnerability.

For my surprise I found that one of the folders, like /docs with index of /, and they have a file that will contain all customer informations.

So basically, I haven't done anything, just opening a file.

Can this be consider as something illegal?