Reflected XSS in admin/edit-news.php in Chadha PHPKB Standard Multi-Language 9 allows malicious users to inject arbitrary web script or HTML via the GET parameter p.
chadhaajay phpkb 9.0