CVE-2022-28102

A cross-site scripting (XSS) vulnerability affects PHP MySQL Admin Panel Generator v1, exploitable via a crafted payload injected at /edit-db.php. Impact is arbitrary web script/HTML execution. Remediation mentions disabling the /edit-db.php endpoint until a patch is available; monitor for updates.