Jason2605 AdminPanel 4.0 allows SQL Injection via the editPlayer.php hidden parameter. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.
SQLi
PHP
Adminpanel
NVD
GitHub
CVSS 3.1
9.8
EPSS
1.1%