Medium severity6.1NVD Advisory· Published Sep 6, 2023· Updated Jun 17, 2026
CVE-2023-41601
CVE-2023-41601
Description
Multiple cross-site scripting (XSS) vulnerabilities in install/index.php of CSZ CMS v1.3.0 allow attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Database Username or Database Host parameters.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- CSZ/CSZ CMSdescription
Patches
Vulnerability mechanics
References
2- github.com/al3zx/csz_cms_1_3_0_xss_in_install_page/blob/main/README.mdnvdExploitThird Party Advisory
- www.cszcms.comnvdProduct
News mentions
0No linked articles in our index yet.