CVE-2005-3009
Cross-site scripting (XSS) vulnerability in CuteNews allows remote attackers to inject arbitrary web script or HTML via the mod parameter to index.php.
Date published : 2005-09-21
http://www.securityfocus.com/archive/1/432110/100/0/threaded