Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Boinc Forum 5.10.20 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 id parameter to forumforum.php, or the searchstring parameter to forumtextsearchaction.php in a 2 titles or 3 bodies search...