• info
• discussion
• exploit
• solution
• references

vBulletin '$newpm[title]' Parameter Cross-Site Scripting Vulnerability

Solution:
The vendor has released fixes. Please see the references for more information.