CVE-2017-10667by Jeremyin Security Bulletinson Posted on June 29, 2017 In index.php in Zen Cart 1.6.0, the products_id parameter can cause XSS.