CVE-2018-18430by Jeremyin Security Bulletinson Posted on October 17, 2018 An issue was discovered in DESTOON B2B 7.0. adminsetting.inc.php has XSS via the first text box to the admin.php URI.