PHP-Nuke Your_Account Module Username Cross-Site Scripting Vulnerability

PHP-Nuke Your_Account Module Username Cross-Site Scripting Vulnerability

The following example is available:

http://www.example.com/[nuke_dir]/modules.php?name=Your_Account&op=mailpasswd&username=[XSS]

The following proof of concept example supplied by Maksymilian Arciemowicz:
http://www.example.com/[nuke_dir]/modules.php?name=Your_Account&op=userinfo&bypass=1&username=[XSS]