Jason2605 AdminPanel 4.0 allows SQL Injection via the editPlayer.php hidden parameter.
adminpanel project adminpanel 4.0