PHP Script: CuteNews 1.3.6 Class: XSS Website: http://cutephp.com/cutenews Found by: Detefix dork: inurl:cutenews ----- - Vulnerable Code: <td align=center colspan=4 style='text-align:left;'>$result</td> ----- - Exploit: http://[target]/[path-to-cutenews]/?result=[XSS]