Pad Cms · Pad Cms · CVE-2025-8116
**Name of the Vulnerable Software and Affected Versions**
PAD CMS (affected versions not specified)
**Description**
PAD CMS is susceptible to Reflected Cross-Site Scripting (XSS) in the printing and save to PDF features. An attacker can create a specially crafted URL that, when opened by a user, leads to the execution of arbitrary JavaScript code within the user's browser. This issue impacts all three templates: www, bip, and www+bip. The product is End-Of-Life and will not receive further security updates.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.