CVE-2024-22722

Server Side Template Injection (SSTI) vulnerability in Form Tools 3.1.1 allows attackers to run arbitrary commands via the Group Name field under the add forms section of the application. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt