CVE-2024-22722 Information

Description

Server Side Template Injection (SSTI) vulnerability in Form Tools 3.1.1 allows attackers to run arbitrary commands via the Group Name field under the add forms section of the application.

Reference

https://hakaisecurity.io/error-404-your-security-not-found-tales-of-web-vulnerabilities/