CubeCart prior to 6.1.13 has SQL Injection via the validate[] parameter of the "I forgot my Password!" feature.
cubecart cubecart