Cross-site scripting (XSS) vulnerability in rg_search.php in Rgboard 3.0.12, and possibly earlier versions, allows remote attackers to inject arbitrary web script or HTML via the s_text parameter and other unspecified vectors.

More... (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-2295)