CVE-2025-8116

Name of the Vulnerable Software and Affected Versions PAD CMS (affected versions not specified)

Description PAD CMS is susceptible to Reflected Cross-Site Scripting (XSS) in the printing and save to PDF features. An attacker can create a specially crafted URL that, when opened by a user, leads to the execution of arbitrary JavaScript code within the user's browser. This issue impacts all three templates: www, bip, and www+bip. The product is End-Of-Life and will not receive further security updates.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.