CVE-2025-8117 — PAD CMS improperly initializes parameter used for password recovery, which allows to change password for any user that did not use reset password functionality. This issue affects all 3 templates: www — CVE Database · The Intelligence Room