Bugtracker.net edit_comment Cross Site Scripting Exploit

The application fails to sanitize the bug_id parameter in several pages such as edit_comment and edit_bug, leading to a cross site scripting vulnerability.