CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-8116

PAD CMS is vulnerable to Reflected XSS in printing and save to PDF functionality. Malicious attacker can craft special URL, which will result in arbitrary JavaScript execution in victim's browser, when opened. This issue affects all 3 templates: www, bip and www+bip. This product is End-Of-Life and producent will not publish patches for this vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 30.3%

CVSS Severity

CVSS v3 Score 6.1

References

https://cert.pl/posts/2025/09/CVE-2025-7063

Products affected by CVE-2025-8116

Widzialni » Pad Cms » Version: Any

cpe:2.3:a:widzialni:pad_cms:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-8116

Products

Pricing

Contact Us