Liferay CE versions prior to 6.2 CE GA6 suffer from a persistent cross site scripting vulnerability.
3e690a22ff5bca0489c813c1cf6feee3cda703e240550e0b23a3d268f6238f9c
CubeCart versions 5.2.12 through 6.0.6 suffer from an administrative bypass vulnerability.
f60945c6b51771ac6273d7ad46fbb4d8ca3795113c1fe5e4cdd7a38366a89823