vBulletin Attachment.PHP Cross-Site Scripting Vulnerability

info
discussion
exploit
solution
references

vBulletin Attachment.PHP Cross-Site Scripting Vulnerability

Solution:
NOTE: The vendor states that this issue is not a vulnerability but a bug. The vendor has released an update for the bug. Please contact the vendor for details on obtaining the updated software.