vBulletin Private Message HTML Injection Vulnerability

info
discussion
exploit
solution
references

vBulletin Private Message HTML Injection Vulnerability

Solution:
The vulnerable version is not a public release. Any sites that may be running vBulletin 3.0.0 beta 2 should either install a public version or contact the vendor to obtain a fixed version of the beta.