L Soft · Listserv · CVE-2023-27641
**Name of the Vulnerable Software and Affected Versions**
L-Soft LISTSERV versions 16.5 through 16.5
**Description**
The issue allows an attacker to conduct XSS attacks via a crafted URL, specifically exploiting the `REPORT` parameter in `wa.exe`.
**Recommendations**
For versions 16.5, update to version 17 or later to resolve the issue.