CVE-2025-69241

Name of the Vulnerable Software and Affected Versions Raytha CMS versions prior to 1.4.6

Description Raytha CMS is susceptible to a Stored Cross-Site Scripting (XSS) issue. An authenticated attacker can inject arbitrary HTML and JavaScript code through the FirstName and LastName parameters within the profile editing functionality. This injected code will be rendered and executed when other users view the edited page.

Recommendations Update Raytha CMS to version 1.4.6 or later.