vBulletin announcemnt.php XSS to CRSF payload

As you know, an admin or moderator can post the html codes via announcements in the vbulletin by visiting this link in vb forum posting from moderator cp [login to view URL] I need a payload developed which will execute the CRSF sploit via [login to view URL] in vbulletin. It must be able to execute the CRSF sploit to inject the arbitrary php code in the plugin hooks of vbulletin via admincp of the forum automatically when admin visit the announcemnt post containing that specific payload. So when admin visits the announcemnt post containing the payload eg. [login to view URL] The code will be injected here in the background:- [login to view URL] the payload will be [login to view URL] and to exploit it one need to make new html enabled announcemnt in vbulletin like this [login to view URL] There already exists the similar exploit but in different form here:- [login to view URL] The above sploit is used to sploit the vbseo vuln and to do php code injection into hooks via crsf. We just need to modify that sploit to make it work in our situation. I am also providing the example exploit for modification from the above page here:- [login to view URL] It will be small time work for the experienced coder to make it workable as you only need to modify the already existing sploit. The sploit must be working against the latest vbuletin 4.2.2 or at least 4.2.1 version P.S. This is only for the education purpose as this will be used to pentest my clients and to prevent system comprise in similar situations. P.S.S. I am, expecting a bids of around 50$