CVE-2004-1924
Multiple cross-site scripting XSS vulnerabilities in Tiki CMS/Groupware TikiWiki 1.8.1 and earlier allow remote attackers to inject arbitrary web script or HTML via via the 1 theme parameter to tiki-switchtheme.php, 2 find and priority parameters to messu-mailbox.php, 3 flag, priority, flagval,...