Profile Builder <= 2.4.1 is vulnerable to Reflected Cross Site Scripting

There is a patch available in v2.4.2 and we strongly recommend you update to this version as soon as possible.