CVE•Published 2023-11-07•Modified 2026-07-09•1 article on news•5 live references•NVD data
CVE-2023-41425Wondercms · Wondercms
Vulnerability data via NVD (ingested)
CVSS v3.1
6.1
MEDIUM
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS percentile
99
Exploit Prediction Scoring System · top 1% of all CVEs
Weaknesses (CWE)
Description
Cross Site Scripting vulnerability in Wonder CMS v.3.2.0 thru v.3.4.2 allows a remote attacker to execute arbitrary code via a crafted script uploaded to the installModule component.
Timeline
Published 2023-11-07
Modified 2026-07-09
External references
Search for exposed instances
Shodan + Censys queries derived from NVD's CPE data. The vuln tag catches assets Shodan has explicitly linked to this CVE; the product / banner fingerprints find exposed instances even when the vuln tag was never applied (which is common).
Shodan · vuln tag0 hosts
vuln:CVE-2023-41425Hosts Shodan has explicitly fingerprinted as vulnerable.
Shodan · product
product:"Wondercms Wondercms"All exposed Wondercms Wondercms instances — cross-reference with the CVE's affected-version range.
Shodan · banner/body mention
http.html:"Wondercms"HTTP body or banner mentions "Wondercms" — catches deploys Shodan didn't identify as a product.
More intel sources (5)
Shodan report
vuln:CVE-2023-41425Country / ASN / product breakdown for the vuln query.
Censys
vulnerabilities.cve_id: CVE-2023-41425Censys host search filtered to this CVE id.
grep.app
CVE-2023-41425Public source-code mentions — fast PoC discovery.
GitHub code
CVE-2023-41425GitHub code search for direct mentions.
Google dork
"CVE-2023-41425" exploit -site:nvd.nist.govWrite-ups and news, NVD excluded.
Known PoCs on GitHub (8)
CVE-2023-414258 repos
prodigiousMind/CVE-2023-41425Python
WonderCMS Authenticated RCE - CVE-2023-41425
Tea-On/CVE-2023-41425-RCE-WonderCMS-4.3.2Python
Automates creation and hosting of a JavaScript XSS payload to install a malicious theme module, triggering a reverse shell via Remote Code Execution in WonderCMS. This tool uses Pe…
theo2612/ctf-pentest-coachPython
CTF Pentest Coach toolkit with Claude Code coaching skill and clean session logging
duck-sec/CVE-2023-41425Python
CVE-2023-41425 (Wonder CMS XSS to RCE) exploit which serves required scripts locally. Good if you're lost at sea and have found a problem with your bike.
thefizzyfish/CVE-2023-41425-wonderCMS_RCEPython
CVE-2023-41425 - Cross Site Scripting vulnerability in Wonder CMS v.3.2.0 thru v.3.4.2 allows a remote attacker to execute arbitrary code via a crafted script uploaded to the insta…
xpltive/CVE-2023-41425Python
WonderCMS v3.2.0 - v3.4.2 XSS to RCE exploit
Raffli-Dev/CVE-2023-41425Python
charlesgargasson/CVE-2023-41425unknown
Wonder CMS RCE (XSS)