CVE-2025-69237

Name of the Vulnerable Software and Affected Versions Raytha CMS versions prior to 1.4.6

Description Raytha CMS is susceptible to a Stored Cross-Site Scripting (XSS) issue. An authenticated attacker with content creation permissions can inject arbitrary HTML and JavaScript code via the FieldValues[0].Value parameter during page creation. This injected code will be rendered and executed when other users visit the modified page. The vulnerable parameter is FieldValues[0].Value.

Recommendations Update Raytha CMS to version 1.4.6 or later.