Cross-site scripting (XSS) vulnerability in WikiNi 0.4.2 and earlier allows remote attackers to inject arbitrary HTML and web script by editing a Wiki page to contain the script.
https://exchange.xforce.ibmcloud.com/vulnerabilities/26772
http://zone14.free.fr/advisories/3/
http://www.securityfocus.com/bid/18156
http://www.securityfocus.com/archive/1/435307/100/0/threaded