CVE-2019-7220

X-Cart V5 is vulnerable to XSS via the CategoryFilter2 parameter.
Source: NIST
CVE-2019-7220