## https://sploitus.com/exploit?id=SAINT:199B4764E7C4AB09BDCC5427977F0F3D
Added: 08/12/2022
CVE: [CVE-2022-1609](<https://vulners.com/cve/CVE-2022-1609>)
### Background
[Weblizar School Management](<https://weblizar.com/plugins/school-management/>) is a WordPress plugin for management of school operations.
### Problem
The license checking code in School Management Pro contains a backdoor which allows remote attackers to execute arbitrary commands.
### Resolution
Upgrade to the current version of School Management Pro.
### References
<https://jetpack.com/blog/backdoor-found-in-the-school-management-pro-plugin-for-wordpress/>