Vulnerability CVE-2023-27641


Published: 2023-03-05

Description:
The REPORT (after z but before a) parameter in wa.exe in L-Soft LISTSERV 16.5 before 17 allows an attacker to conduct XSS attacks via a crafted URL.

 References:
https://github.com/hosakauk/exploits/blob/master/listserv_report_xss.MD

Copyright 2026, cxsecurity.com

 

Back to Top