CVE-2018-10135by Jeremyin Security Bulletinson Posted on April 16, 2018 iScripts eSwap v2.4 has Reflected XSS via the “catwiseproducts.php” catid parameter in the User Panel.