In Metinfo 7.0.0beta, a SQL Injection was discovered in app/system/product/admin/product_admin.class.php via the admin/?n=product&c=product_admin&a=dopara&app_type=shop id parameter.Referenceshttps://github.com/XiaOkuoAi/XiaOkuoAi.github.io/issues/1
