## https://sploitus.com/exploit?id=A372C56F-D8B3-5DAE-BD3F-1EB6467679D8
# CVE-2026-10580 - WordPress - Hippoo Mobile App for WooCommerce 1.9.4). Additionally:
- Regularly audit user accounts for unauthorized changes
- Monitor logs for unexpected API requests to `/wp-json/wc-hippoo/v1/ext/wp/v2/users`
- Consider restricting access to the WordPress REST API if not required
## License
This project is licensed under the **MIT License**. See the [LICENSE](LICENSE) file for details.
## Author
**0xgh057r3c0n**
## Disclaimer
The author is not responsible for any misuse of this tool. Use responsibly and only on systems you own or have explicit permission to test.