JIKO No-exploit.Com

3 exploits Active since Jul 2008
CVE-2009-4854 EXPLOITDB text WORKING POC
Scripts.oldguy Talkback - Improper Input Validation
addons/import.php in TalkBack 2.3.14 allows remote attackers to execute arbitrary commands via the result parameter.
CVE-2008-3371 EXPLOITDB text WORKING POC
TalkBack <2.3.6.2 - Path Traversal
Directory traversal vulnerability in install/help.php in TalkBack 2.3.5, and other versions before 2.3.6.2, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the language parameter.
CVE-2009-4874 EXPLOITDB text WORKING POC
Scripts.oldguy Talkback - Access Control
TalkBack 2.3.14 does not properly restrict access to the edit comment feature (comments.php), which allows remote attackers to modify comments.