Secunia Security Advisory - Two vulnerabilities have been reported in the Talk module for Drupal, which can be exploited by malicious users to conduct script insertion attacks, and by malicious people to bypass certain security restrictions.
15cd4ad0e529a13588c84a2736fd216bee92e36420e866b799a5f176d1b61387