Summary: osCommerce 2.3.4.1 has XSS vulnerability via the authenticated user entering the XSS payload into the title section of newsletters.Published: Wednesday, November 25, 2020 - 20:15cvss: 5.0