Cross-site scripting (XSS) vulnerability in index.php in Jelsoft vBulletin allows remote attackers to spoof parts of a website via the loc parameter.Referenceshttp://www.securityfocus.com/bid/10362http://www.infosecurity.org.cn/article/hacker/exploit/16557.html
