Cross-site scripting (XSS) vulnerability in forum/viewtopic.php in PunBB 1.3 allows remote attackers to inject arbitrary web script or HTML via the pid parameter.Referenceshttp://www.packetstormsecurity.com/1001-exploits/punbb13-xss.txthttp://www.securityfocus.com/bid/37930https://exchange.xforce.ibmcloud.com/vulnerabilities/55853
