CVE-2009-1318

2009-04-1710:00:00

mitre

www.cve.org

AI Score

6.9

Confidence

High

EPSS

0.014

Percentile

86.2%

JSON

Directory traversal vulnerability in index.php in Jamroom 3.1.2, 3.2.3 through 3.2.6, 4.0.2, and possibly other versions before 3.4.0 allows remote attackers to include arbitrary files via directory traversal sequences in the t parameter.

References

www.jamroom.net/index.php?m=td_tracker&o=view&id=1470

www.securityfocus.com/bid/34511

exchange.xforce.ibmcloud.com/vulnerabilities/49869

www.exploit-db.com/exploits/8423