Directory traversal vulnerability in ComGetLogFile.php3 for TrackerCam 5.12 and earlier allows remote attackers to read arbitrary files via ".." sequences and (1) "/" slash), (2) "\" (backslash), or (3) hex-encoded characters in the fn parameter.Referenceshttp://www.securityfocus.com/archive/1/390918http://www.securityfocus.com/bid/12592https://exchange.xforce.ibmcloud.com/vulnerabilities/19414
