CVE-2009-3649
Cross-site scripting (XSS) vulnerability in forums/index.php in Power Bulletin Board (PBBoard) 2.0.2 and possibly earlier allows remote attackers to inject arbitrary web script or HTML via the id parameter in a new_topic action.
Date published : 2009-10-09
http://www.securityfocus.com/archive/1/506992/100/0/threaded