Severity by source
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
Lifecycle Timeline
4DescriptionCVE.org
Raytha CMS is vulnerable to Stored XSS via FieldValues[1].Value parameter in post editing functionality. Authenticated attacker with permissions to edit posts can inject arbitrary HTML and JS into website, which will be rendered/executed when visiting edited page.
This issue was fixed in version 1.4.6.
AnalysisAI
Raytha CMS contains a Stored Cross-Site Scripting (XSS) vulnerability in the post editing functionality, specifically within the FieldValues[1].Value parameter that fails to sanitize user input before storage and rendering. An authenticated attacker with post editing permissions can inject malicious HTML and JavaScript code that persists in the database and executes in the browsers of any user viewing the affected post, potentially leading to session hijacking, credential theft, or defacement. The vulnerability affects versions prior to 1.4.6 and does not appear to be actively exploited in the wild based on available intelligence, though the low CVSS score of 5.1 reflects the requirement for prior authentication and user interaction rather than the severity of the potential impact.
Technical ContextAI
This vulnerability is rooted in CWE-79 (Improper Neutralization of Input During Web Page Generation), a classic stored XSS flaw where user-supplied content in the FieldValues[1].Value parameter during post editing is not properly escaped or sanitized before being persisted to the database and subsequently rendered in HTML context. Raytha CMS is a content management system built on modern web frameworks that processes post field values through its editing API. The vulnerability exists because input validation and output encoding mechanisms fail at the storage layer, allowing arbitrary HTML tags and JavaScript to be committed to the database. When subsequent requests retrieve and render these field values, the browser interprets the injected scripts as legitimate page content, enabling arbitrary code execution in the security context of the victim's session. The attack vector is network-based with low complexity, requiring only standard HTTP POST requests with crafted payloads targeting the post editing endpoint.
RemediationAI
Upgrade Raytha CMS to version 1.4.6 or later immediately to apply the security patch that properly sanitizes and escapes the FieldValues parameter. Until patching can be completed, restrict post-editing permissions to a minimal set of trusted administrative users and conduct a content audit to identify any injected payloads in existing posts, removing or quarantining suspicious content. Implement a Web Application Firewall (WAF) rule to detect and block common XSS payloads in POST requests to the post editing endpoint, and enable Content Security Policy (CSP) headers with strict-origin-when-cross-origin and script-src directives to mitigate the impact of any injected scripts. Monitor access logs for unusual editing activity and consider implementing output encoding at the templating layer as a defense-in-depth measure to ensure all user-supplied content is properly escaped before rendering.
SQL injection in Raytha CMS 1.5.2 lets a remote, unauthenticated attacker inject arbitrary SQL through the OData filter
A code injection vulnerability in Raytha CMS's Functions module allows privileged users to execute arbitrary .NET operat
A host header injection vulnerability in Raytha CMS allows attackers to hijack password reset tokens by spoofing X-Forwa
Raytha CMS contains a user enumeration vulnerability in its password reset functionality where differing error messages
Raytha CMS lacks brute force protection mechanisms, allowing attackers to conduct unlimited automated login attempts wit
Raytha CMS contains a Cross-Site Request Forgery (CSRF) vulnerability across multiple endpoints that fails to enforce to
Raytha CMS contains a Stored Cross-Site Scripting (XSS) vulnerability in the profile editing functionality, specifically
Raytha CMS contains a Reflected Cross-Site Scripting (XSS) vulnerability in the logon functionality's returnUrl paramete
Raytha CMS contains a reflected cross-site scripting (XSS) vulnerability in the backToListUrl parameter that allows unau
Raytha CMS contains a Stored Cross-Site Scripting (XSS) vulnerability in the page creation functionality through the Fie
Raytha CMS contains a Server-Side Request Forgery (SSRF) vulnerability in its Theme Import from URL feature that allows
Same weakness CWE-79 – Cross-site Scripting (XSS)
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2025-208699