Описание
TalkBack 2.3.14 does not properly restrict access to the edit comment feature (comments.php), which allows remote attackers to modify comments.
TalkBack 2.3.14 does not properly restrict access to the edit comment feature (comments.php), which allows remote attackers to modify comments.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2009-4874
- http://osvdb.org/55745
- http://secunia.com/advisories/35735
- http://www.exploit-db.com/exploits/9095
- http://www.juniper.net/security/auto/vulnerabilities/vuln35619.html
- http://www.packetstormsecurity.org/0907-exploits/talkback-lfiexec.txt
- http://www.securityfocus.com/bid/35619
EPSS
Процентиль: 91%
0.06677
Низкий
CVE ID
Связанные уязвимости
nvd
больше 15 лет назад
TalkBack 2.3.14 does not properly restrict access to the edit comment feature (comments.php), which allows remote attackers to modify comments.
EPSS
Процентиль: 91%
0.06677
Низкий