## https://sploitus.com/exploit?id=E3EC58D4-B32D-56D8-A0BF-F264EC3BA024
# CVE-2026-8732 - WordPress WP Google Map Pro Mass Scanner & Auto Admin Creator
[](https://www.python.org/downloads/release/python-2718/)
[](LICENSE)
## ๐ Description
This tool exploits **CVE-2026-8732**, a vulnerability in the **WP Google Map Pro** plugin for WordPress. The vulnerability allows an unauthenticated attacker to obtain a valid `wpmp_token` via an AJAX endpoint (`admin-ajax.php?action=wpgmp_temp_access_ajax`). Using this token, an attacker can access the WordPress admin panel and create a new administrator user.
The tool performs **mass scanning** from a list of domains, extracts the nonce and token, and automatically creates a hidden administrator account on vulnerable sites. Results are saved in real-time with full token details.
## ๐ CVE Details
| Field | Value |
|-------|-------|
| **CVE ID** | CVE-2026-8732 (hypothetical for this plugin) |
| **Affected Plugin** | WP Google Map Pro (versions Token found
[*] https://example.com -> Accessing redirect URL...
[+] https://example.com -> Admin created: securityaudit_1734567890 / StrongP@ssw0rd123!
```
โ๏ธ Configuration
Edit the following variables inside the script:
```python
TIMEOUT = 10 # Request timeout in seconds
JUMLAH_THREAD = 10 # Number of concurrent threads
OUTPUT_FILE = "res.txt" # File for vulnerable results
ADMIN_FILE = "admin_created.txt"
BASE_USERNAME = "securityaudit"
NEW_PASSWORD = "StrongP@ssw0rd123!"
NEW_EMAIL = "audit@example.com"
```
๐ง How It Works
1. Nonce Extraction
Sends a GET request to the target, extracts wpgmp_local or fc-call-nonce from HTML.
2. Token Exploitation
Sends a POST to /wp-admin/admin-ajax.php with action=wpgmp_temp_access_ajax and the obtained nonce.
3. Admin Session
Follows the redirect URL (if provided) to gain authenticated session cookies.
4. Admin Creation
Accesses /wp-admin/user-new.php, extracts _wpnonce_create-user, and submits a POST to create a new administrator user.
5. Verification
Checks for HTTP 302 redirect to users.php or searches for the new username in the users list to confirm success.
๐ก๏ธ Mitigation
ยท Update WP Google Map Pro to the latest patched version.
ยท Disable the AJAX action wpgmp_temp_access_ajax via custom code or firewall.
ยท Use a Web Application Firewall (WAF) to block malicious requests to admin-ajax.php.