Weblizar School Management Pro plugin backdoor

Added: 08/12/2022
CVE: CVE-2022-1609

Background

Weblizar School Management is a WordPress plugin for management of school operations.

Problem

The license checking code in School Management Pro contains a backdoor which allows remote attackers to execute arbitrary commands.

Resolution

Upgrade to the current version of School Management Pro.

References

https://jetpack.com/blog/backdoor-found-in-the-school-management-pro-plugin-for-wordpress/

Back to exploit index