Share
## https://sploitus.com/exploit?id=E3EC58D4-B32D-56D8-A0BF-F264EC3BA024
# CVE-2026-8732 - WordPress WP Google Map Pro Mass Scanner & Auto Admin Creator

[![Python 2.7](https://img.shields.io/badge/Python-2.7-blue.svg)](https://www.python.org/downloads/release/python-2718/)
[![License](https://img.shields.io/badge/License-MIT-green.svg)](LICENSE)

## ๐Ÿ“Œ Description

This tool exploits **CVE-2026-8732**, a vulnerability in the **WP Google Map Pro** plugin for WordPress. The vulnerability allows an unauthenticated attacker to obtain a valid `wpmp_token` via an AJAX endpoint (`admin-ajax.php?action=wpgmp_temp_access_ajax`). Using this token, an attacker can access the WordPress admin panel and create a new administrator user.

The tool performs **mass scanning** from a list of domains, extracts the nonce and token, and automatically creates a hidden administrator account on vulnerable sites. Results are saved in real-time with full token details.

## ๐Ÿ” CVE Details

| Field | Value |
|-------|-------|
| **CVE ID** | CVE-2026-8732 (hypothetical for this plugin) |
| **Affected Plugin** | WP Google Map Pro (versions  Token found
[*] https://example.com -> Accessing redirect URL...
[+] https://example.com -> Admin created: securityaudit_1734567890 / StrongP@ssw0rd123!
```

โš™๏ธ Configuration

Edit the following variables inside the script:

```python
TIMEOUT = 10               # Request timeout in seconds
JUMLAH_THREAD = 10         # Number of concurrent threads
OUTPUT_FILE = "res.txt"    # File for vulnerable results
ADMIN_FILE = "admin_created.txt"

BASE_USERNAME = "securityaudit"
NEW_PASSWORD = "StrongP@ssw0rd123!"
NEW_EMAIL = "audit@example.com"
```

๐Ÿง  How It Works

1. Nonce Extraction
      Sends a GET request to the target, extracts wpgmp_local or fc-call-nonce from HTML.
2. Token Exploitation
      Sends a POST to /wp-admin/admin-ajax.php with action=wpgmp_temp_access_ajax and the obtained nonce.
3. Admin Session
      Follows the redirect URL (if provided) to gain authenticated session cookies.
4. Admin Creation
      Accesses /wp-admin/user-new.php, extracts _wpnonce_create-user, and submits a POST to create a new administrator user.
5. Verification
      Checks for HTTP 302 redirect to users.php or searches for the new username in the users list to confirm success.

๐Ÿ›ก๏ธ Mitigation

ยท Update WP Google Map Pro to the latest patched version.
ยท Disable the AJAX action wpgmp_temp_access_ajax via custom code or firewall.
ยท Use a Web Application Firewall (WAF) to block malicious requests to admin-ajax.php.