PT-2026-25689 · Raytha+1 · Raytha
Daniel Basta
·
Publicado
2026-03-16
·
Atualizado
2026-03-16
·
CVE-2025-69236
CVSS v3.1
5.4
Média
| Vetor | AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Raytha CMS versions prior to 1.4.6
Description
Raytha CMS is susceptible to a Stored Cross-Site Scripting (XSS) issue. An authenticated attacker with post editing privileges can inject arbitrary HTML and JavaScript code via the
FieldValues[1].Value parameter within the post editing functionality. This injected code will be rendered and executed when other users visit the modified page. The affected parameter is used in the post editing functionality.Recommendations
Update Raytha CMS to version 1.4.6 or later.
Correção
XSS
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Raytha