CVE-2018-10097by Jeremyin Security Bulletinson Posted on April 16, 2018 XSS exists in Domain Trader 2.5.3 via the recoverlogin.php email_address parameter.