Sari3L

**Name of the Vulnerable Software and Affected Versions** MetInfo version 7.0.0 beta **Description** An issue was discovered that allows SQL Injection via the "admin/?n=tags&c=index&a=doSaveTags" API endpoint. **Recommendations** For MetInfo version 7.0.0 beta, consider restricting access to the "admin/?n=tags&c=index&a=doSaveTags" API endpoint until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.