CVE-2010-1112
Cross-site scripting (XSS) vulnerability in cat.php in KloNews 2.0 allows remote attackers to inject arbitrary web script or HTML via the cat parameter.
Date published : 2010-03-25
http://packetstormsecurity.org/1001-exploits/klonews-xss.txt