Hello Everybody Summary Software: CuteNews Sowtwares Web Site: http://cutephp.com Versions: 1.4.1 Class: Remote Status: Unpatched Exploit: Available Solution: NotAvailable Discovered by: imei addmimistrator Risk Level: Mediume&High -Description- There is a security bug in CuteNews version 1.4.1 that allows malicious people to perform an XSS attack
Full Advisory: http://myimei.com/security/2006-02-20/cutenews141addcommentforprotectedusernamesxss-attack.html greatz to roozbeh afrasiabi:black_death
