CVE-2025-69236

CVSS v3.1

5.4

Medium

Vector

AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions Raytha CMS versions prior to 1.4.6

Description Raytha CMS is susceptible to a Stored Cross-Site Scripting (XSS) issue. An authenticated attacker with post editing privileges can inject arbitrary HTML and JavaScript code via the FieldValues[1].Value parameter within the post editing functionality. This injected code will be rendered and executed when other users visit the modified page. The affected parameter is used in the post editing functionality.

Recommendations Update Raytha CMS to version 1.4.6 or later.

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2025-69236

Affected Products

Raytha

CVE-2025-69236

Weakness Enumeration

Related Identifiers

Affected Products

References · 9