Vulnerabilities (CVE)

Filtered by vendor Weblizar Subscribe
Filtered by product School Management
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-1609 1 Weblizar 1 School Management 2024-11-21 N/A 9.8 CRITICAL
The School Management WordPress plugin before 9.9.7 contains an obfuscated backdoor injected in it's license checking code that registers a REST API handler, allowing an unauthenticated attacker to execute arbitrary PHP code on the site.