XSS

[GoogleCodeExporter]

What steps will reproduce the problem?
1. Go to: http://gforum-demo.appspot.com/forum/t/39001/test_title

A script is executed. The input of the user must be filtered in order to 
disallow this behavior.

It's really dangerous. A forum could not be run with these bugs. 

BTW, great work.

Original issue reported on code.google.com by New...@gmail.com on 16 Oct 2012 at 3:27