CVE-2018-20703by Jeremyin Security Bulletinson Posted on January 13, 2019 CubeCart 6.2.2 has Reflected XSS via a /{ADMIN-FILE}/ query string.