SQL Injection vulnerability in SEO Panel 4.9.0 in api/user.api.php in function getUserName in the username parameter, allows attackers to gain sensitive information.
https://github.com/seopanel/Seo-Panel/issues/219
https://gist.github.com/victomteng1997/a0d47d6982a7b382f632ec7e8c3307f1