CVE-2004-0620
The CVE-2004-0620 issue affects vBulletin versions around 3.0.1, where the XSS flaw exists in the newreply.php and newthread.php code (Edit-panel) that allows a remote attacker to inject HTML/script as another user. OpenVAS entries frame this as a vulnerability in vBulletin