NavigateCMS 2.9 is affected by Cross Site Scripting (XSS) via the module "Shop." Read more