WoltLab Burning Board Thread.PHP Cross-Site Scripting Vulnerability

WoltLab Burning Board Thread.PHP Cross-Site Scripting Vulnerability

No exploit is required.

The following proof-of-concept URI is available where [Topic_ID] is a valid ID of a topic:

http://www.example.com/thread.php?threadid=[Topic_ID]&hilight=[XSS]