CVE-2025-53516

Name of the Vulnerable Software and Affected Versions MedDream PACS Premium version 7.3.6.870

Description A reflected cross-site scripting (xss) issue exists within the downloadZip functionality. A malicious URL can be used to execute arbitrary javascript code. An attacker can provide a crafted URL to trigger this issue.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.