Directory traversal vulnerability in index.php in Jamroom 3.1.2, 3.2.3 through 3.2.6, 4.0.2, and possibly other versions before 3.4.0 allows remote attackers to include arbitrary files via directory traversal sequences in the t parameter.
https://www.exploit-db.com/exploits/8423
https://exchange.xforce.ibmcloud.com/vulnerabilities/49869
http://www.jamroom.net/index.php?m=td_tracker&o=view&id=1470