Unrated severityNVD Advisory· Published Mar 16, 2026· Updated Mar 16, 2026
Reflected XSS in Raytha CMS
CVE-2025-69242
Description
Raytha CMS is vulnerable to reflected XSS via the backToListUrl parameter. An attacker can craft a malicious URL which, when opened by authenticated victim, results in arbitrary JavaScript execution in the victim’s browser.
This issue was fixed in version 1.4.6.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
2- cert.pl/en/posts/2026/03/CVE-2025-69236mitrethird-party-advisory
- raytha.commitreproduct
News mentions
0No linked articles in our index yet.