A SQL injection in the /admin/?n=logs&c=index&a=dolist component of Metinfo 7.0 allows malicious users to access sensitive database information.
metinfo metinfo 7.0.0