Security Advisory

CVE-2025-69236

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-16 11:52:54

Last updated 2026-03-16 13:49:57

Assigner CERT-PL

State PUBLISHED

Description

Raytha CMS is vulnerable to Stored XSS via FieldValues[1].Value parameter in post editing functionality. Authenticated attacker with permissions to edit posts can inject arbitrary HTML and JS into website, which will be rendered/executed when visiting edited page. This issue was fixed in version 1.4.6.

← Browse all CVEs View on cve.org ↗