Lucene search
K

9 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:13 p.m.9 views

CVE-2022-1609

The School Management WordPress plugin before 9.9.7 contains an obfuscated backdoor injected in it's license checking code that registers a REST API handler, allowing an unauthenticated attacker to execute arbitrary PHP code on the site...

9.8CVSS7.7AI score0.64321EPSS
Exploits6References1
NVD
NVD
added 2024/01/16 4:15 p.m.34 views

CVE-2022-1609

The School Management WordPress plugin before 9.9.7 contains an obfuscated backdoor injected in it's license checking code that registers a REST API handler, allowing an unauthenticated attacker to execute arbitrary PHP code on the site...

9.8CVSS9.8AI score0.64321EPSS
Exploits6References1
OSV
OSV
added 2024/01/16 4:15 p.m.5 views

CVE-2022-1609

The School Management WordPress plugin before 9.9.7 contains an obfuscated backdoor injected in it's license checking code that registers a REST API handler, allowing an unauthenticated attacker to execute arbitrary PHP code on the site...

9.8CVSS6.1AI score0.64321EPSS
Exploits6References1
Cvelist
Cvelist
added 2024/01/16 3:52 p.m.36 views

CVE-2022-1609 The School Management < 9.9.7 - Unauthenticated RCE via REST api

The School Management WordPress plugin before 9.9.7 contains an obfuscated backdoor injected in it's license checking code that registers a REST API handler, allowing an unauthenticated attacker to execute arbitrary PHP code on the site...

10AI score0.64321EPSS
Exploits6References1
CVE
CVE
added 2024/01/16 3:52 p.m.2033 views

CVE-2022-1609

CVE-2022-1609 affects The School Management WordPress plugin prior to version 9.9.7. The obfuscated backdoor is injected in the license checking code and registers a REST API handler, enabling an unauthenticated attacker to execute arbitrary PHP code on the site (RCE). Impact is the ability to ru...

9.8CVSS9.7AI score0.64321EPSS
In wildExploits6References1Affected Software1
Saint
Saint
added 2022/08/12 12:0 a.m.240 views

Weblizar School Management Pro plugin backdoor

Added: 08/12/2022 CVE: CVE-2022-1609 Background Weblizar School Management is a WordPress plugin for management of school operations. Problem The license checking code in School Management Pro contains a backdoor which allows remote attackers to execute arbitrary commands. Resolution Upgrade to t...

9.8CVSS9.8AI score0.64321EPSS
Exploits6
Saint
Saint
added 2022/08/12 12:0 a.m.222 views

Weblizar School Management Pro plugin backdoor

Added: 08/12/2022 CVE: CVE-2022-1609 Background Weblizar School Management is a WordPress plugin for management of school operations. Problem The license checking code in School Management Pro contains a backdoor which allows remote attackers to execute arbitrary commands. Resolution Upgrade to t...

9.8CVSS9.8AI score0.64321EPSS
Exploits6
GithubExploit
GithubExploit
added 2022/06/09 2:36 p.m.409 views

Exploit for Code Injection in Weblizar School_Management

CVE-2022-1609 Bash poc for CVE-2022-1609 WordPress Weblizar B...

9.8CVSS9.6AI score0.64321EPSS
Exploits6
The Hacker News
The Hacker News
added 2022/05/21 5:11 a.m.63 views

Researchers Find Backdoor in School Management Plugin for WordPress

Multiple versions of a WordPress plugin by the name of "School Management Pro" harbored a backdoor that could grant an adversary complete control over vulnerable websites. The issue, spotted in premium versions before 9.9.7, has been assigned the CVE identifier CVE-2022-1609 and is rated 10 out o...

1.1AI score0.64321EPSS
Exploits6
Rows per page
Query Builder