Poor console codez... I could have done worse, but injecting SQL is illegal and using html isn't. The reason I did it was because I found out from a Moderator there that he was stealing credit for Johnny's VIP codes. XSS is powerful. I didn't really want to do anything too destructive, I just wanted to teach him a lesson on not upgrading his VBulletin. If I was really malicious, I could have injected SQL to make me an administrator and delete everything, but I'm nice and wanted to contribute to my favorite site, by bringing in more visitors to Console Discussions, as Console Codez, now redirects to Console Discussions. =]

Not only did they steal Johnny's codes, but they also stole the theme and banner from Johnny.