CVE-2024-22722

EPSS 0.08% · P23 Updated Feb 26, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2024-22722

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Server Side Template Injection (SSTI) vulnerability in Form Tools 3.1.1 allows attackers to run arbitrary commands via the Group Name field under the add forms section of the application.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Form Tools 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Form Tools是开源的一个表单工具脚本、模块、主题和 API 的代码库。 Form Tools 3.1.1版本存在安全漏洞，该漏洞源于允许攻击者通过应用程序添加表单部分下的 Group Name字段运行任意命令。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2024-22722

#	POC Description	Source Link	Shenlong Link
1	CVE-2024-22722 RCE via SSTI, automated with Python.	https://github.com/terribledactyl/Form-Tools-3.1.1-RCE	POC Details

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2024-22722

请登录查看更多情报信息。

Same Patch Batch · n/a · 2024-04-11 · 23 CVEs total

CVE-2024-21508	9.8 CRITICAL	mysql2 安全漏洞
CVE-2024-31678		Loan Management System 安全漏洞
CVE-2023-48865		Reportico 安全漏洞
CVE-2024-28458		swfdump 安全漏洞
CVE-2024-27592		website 安全漏洞
CVE-2024-25852		Linksys RE7000 安全漏洞
CVE-2024-25376		Thesycon Software Solutions TUSBAudio 安全漏洞
CVE-2024-22721		Form Tools 跨站请求伪造漏洞
CVE-2024-22719		Form Tools SQL注入漏洞
CVE-2024-22718		Form Tools 安全漏洞
CVE-2024-22717		Form Tools 安全漏洞
CVE-2024-30878		RageFrame2 安全漏洞
CVE-2023-29483		Eventlet 安全漏洞
CVE-2024-29399		GNU Savane 安全漏洞
CVE-2024-30917		eProsima Fast DDS 安全漏洞
CVE-2024-30916		eProsima Fast DDS 安全漏洞
CVE-2024-30915		Object Computing OpenDDS 安全漏洞
CVE-2024-30885		HadSky 安全漏洞
CVE-2024-30884		Discuz! 安全漏洞
CVE-2024-30883		RageFrame2 安全漏洞

Showing top 20 of 23 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2024-22722

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2024-22722

I. Basic Information for CVE-2024-22722

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2024-22722

III. Intelligence Information for CVE-2024-22722

Same Patch Batch · n/a · 2024-04-11 · 23 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2024-22722

Leave a comment