Security News CVE-2018-20703 by rootdaemon January 12, 2019 CubeCart 6.2.2 has Reflected XSS via a /{ADMIN-FILE}/ query string. Don't forget to shareTweet Tags: CVE201820703