SQL Injection vulnerability in Form Tools 3.1.1 allows malicious users to run arbitrary SQL commands via the 'keyword' when searching for a client.