Cross-site Scripting (XSS)

github.com/koding/koding is susceptible to cross-site scripting XSS attacks. It happens because it encodes title as html in setPaneTitle of KDTabView.coffee...