JelSoft VBulletin Cross-Site Scripting Vulnerability

info
discussion
exploit
solution
references

JelSoft VBulletin Cross-Site Scripting Vulnerability

It has been reported that VBulletin is prone to a cross-site scripting vulnerability. This issue is reportedly due to a failure to sanitize user input and so allow HTML and script code that may facilitate cross-site scripting attacks. Upon successful exploitation, this issue may allow for theft of cookie-based authentication credentials or other attacks.