Security Advisory
CVE-2022-39195
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
A cross-site scripting (XSS) vulnerability in the LISTSERV 17 web interface allows remote attackers to inject arbitrary JavaScript or HTML via the c parameter.