Vulnerabilities > Phpmanufaktur > Kitform > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2014-05-15 | CVE-2014-3757 | SQL Injection vulnerability in PHPmanufaktur Kitform SQL injection vulnerability in sorter.php in the phpManufaktur kitForm extension 0.43 and earlier for the KeepInTouch (KIT) module allows remote attackers to execute arbitrary SQL commands via the sorter_value parameter. | 7.5 |