CVE-2009-1318 Information

Description

Directory traversal vulnerability in index.php in Jamroom 3.1.2 3.2.3 through 3.2.6 4.0.2 and possibly other versions before 3.4.0 allows remote attackers to include arbitrary files via directory traversal sequences in the t parameter.

Reference

http://www.jamroom.net/index.php?m=td_tracker&o=view&id=1470 http://www.securityfocus.com/bid/34511 https://exchange.xforce.ibmcloud.com/vulnerabilities/49869 https://www.exploit-db.com/exploits/8423