Can I see my vbseo scripts knowing the URL?

I am not a tech guy and I found something that puzzled me:
If I type: www.mysite.ro/vbseo/ (don't try the link it wont work ) I get the directory
More if I know exactly the files names in directories I manage to display different files, including running .php addon scripts (and receiving an error)

I have noticed that some folders are htacces protected but a few. There, is no game, all is safe.

Should it be like this? Is safe? Can I put deny all htacces file in all folders?

I am talking abut 3.5.1 and last PL1

Funny is that 3.2.2 older version hasn't this problem as back then it wasn't a vbseo directory.

Same in vbseo_sitemap/addons/ where I manage to run scripts.

I just got nailed so you can imagine my sensitiveness on this matter

Forgot to mention I have non English forums if this is of any help (I have set different rewriting rules than proposed ones)

It's not a big deal... You can add a deny from all htaccess file or simply add a blank index.html file to each folder if you want.

The scripts won't run or do anything by themselves.

I just did that , but in vbseo-sitemap/addons i can really run scripts form there and receive errors.
Is safe to add htacces file to all folders of vbseo without disrupting the vbseo script? (sorry i am not a coder)

Thanks man for such a fast response. I am jumping now even on fly passing by ...