mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-05 10:17:57 +00:00
1.6 KiB
1.6 KiB
CVE-2022-1609
&color=brighgreen)
Description
The School Management WordPress plugin before 9.9.7 contains an obfuscated backdoor injected in it's license checking code that registers a REST API handler, allowing an unauthenticated attacker to execute arbitrary PHP code on the site.
POC
Reference
Github
- https://github.com/0x007f/cve-2022-1609-exploit
- https://github.com/0xSojalSec/-CVE-2022-1609
- https://github.com/0xSojalSec/CVE-2022-1609
- https://github.com/ARPSyndicate/cvemon
- https://github.com/ARPSyndicate/kenzer-templates
- https://github.com/NaInSec/CVE-PoC-in-GitHub
- https://github.com/WhooAmii/POC_to_review
- https://github.com/WitchWatcher/cve-2022-1609-exploit
- https://github.com/k0mi-tg/CVE-POC
- https://github.com/manas3c/CVE-POC
- https://github.com/nastar-id/WP-school-management-RCE
- https://github.com/nomi-sec/PoC-in-GitHub
- https://github.com/savior-only/CVE-2022-1609
- https://github.com/tuxsyscall/cve-2022-1609-exploit
- https://github.com/w4r3s/cve-2022-1609-exploit
- https://github.com/whoforget/CVE-POC
- https://github.com/youwizard/CVE-POC
- https://github.com/zecool/cve