CVE-2014-3757

2014-05-15T14:55:00
ID CVE-2014-3757
Type cve
Reporter cve@mitre.org
Modified 2015-10-21T16:23:00

Description

SQL injection vulnerability in sorter.php in the phpManufaktur kitForm extension 0.43 and earlier for the KeepInTouch (KIT) module allows remote attackers to execute arbitrary SQL commands via the sorter_value parameter.