CGI Helper version 1.00 suffers from a cross site scripting vulnerability.
947c083d30d0cc6d27c6403332bd1b2452721a1bf9387767228b4021aaf2e122
The email subscription functionality in X-Cart suffers from a cross site scripting vulnerability.
b0fdc293263787f914c0b83c6cb11788ee71be283bcc9bf8e790484557f6b34c