vBulletin '$newpm[title]' Parameter Cross-Site Scripting Vulnerability

vBulletin '$newpm[title]' Parameter Cross-Site Scripting Vulnerability

References:

vBulletin 3.7.2 PL2 / vBulletin 3.6.10 PL4 Released (vBulletin)
vBulletin Homepage (vBulletin)
vBulletin Member Updates (vBulletin)
CORE-2008-0813 - vBulletin Cross Site Scripting Vulnerability (CORE Security Technologies Advisories
CORE-2008-0813: vBulletin Cross Site Scripting Vulnerability (CORE)

Privacy Statement
Copyright 2010, SecurityFocus