CVSS: 9.8EPSS: 56%CPEs: 1EXPL: 4CVE-2022-1609 – The School Management < 9.9.7 - Unauthenticated RCE via REST api
https://notcve.org/view.php?id=CVE-2022-1609
The School Management WordPress plugin before 9.9.7 contains an obfuscated backdoor injected in it's license checking code that registers a REST API handler, allowing an unauthenticated attacker to execute arbitrary PHP code on the site. El complemento de WordPress School Management anterior a 9.9.7 contiene una puerta trasera ofuscada inyectada en su código de verificación de licencia que registra un controlador de API REST, lo que permite a un atacante no autenticado ejecutar código PHP arbitrario en el sitio. The plugin School Management Pro in version 8.9 contains code that allows an attacker to remotely execute code. • https://github.com/0xSojalSec/-CVE-2022-1609 https://github.com/0xSojalSec/CVE-2022-1609 https://github.com/savior-only/CVE-2022-1609 https://wpscan.com/vulnerability/e2d546c9-85b6-47a4-b951-781b9ae5d0f2 • CWE-94: Improper Control of Generation of Code ('Code Injection') CWE-912: Hidden Functionality •