zycoder0day/CVE-2026-8732 — reverse-engineered prompt

Build me a Python command line tool for authorized WordPress security testing around CVE 2026 8732 in WP Maps Pro.

I want to enter one site or a list of sites I own, and have the tool check if each one looks like WordPress, whether WP Maps Pro is present, what version it can detect, and whether it appears affected by the privilege escalation issue. It should try common public pages and feeds to find the plugin nonce, then show a clear status like safe, vulnerable, blocked by WAF, not WordPress, or could not confirm.

Please include an optional proof mode that only runs when I confirm it, verifies the issue safely, and prints the result without making unnecessary changes. Add clean progress output, timeouts, retries, CSV or text results, and a simple help screen. Keep it easy to run with Python 3, document the legal authorized use only, and look up current WordPress behavior online if needed.