Skip to main content

Raytha CVE-2025-69238

| EUVDEUVD-2025-208703 MEDIUM
Cross-Site Request Forgery (CSRF) (CWE-352)
2026-03-16 CERT-PL
6.9
CVSS 4.0 · NVD
Share

Severity by source

NVD PRIMARY
6.9 MEDIUM
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
A

Lifecycle Timeline

4
Patch available
Apr 16, 2026 - 05:29 EUVD
1.4.6
EUVD ID Assigned
Mar 16, 2026 - 12:00 euvd
EUVD-2025-208703
Analysis Generated
Mar 16, 2026 - 12:00 vuln.today
CVE Published
Mar 16, 2026 - 11:53 nvd
MEDIUM 6.9

DescriptionCVE.org

Raytha CMS is vulnerable to Cross-Site Request Forgery across multiple endpoints. Attacker can craft special website, which when visited by the authenticated victim, will automatically send POST request to the endpoint (e. x. deletion of the data) without enforcing token verification.

This issue was fixed in version 1.4.6.

AnalysisAI

Raytha CMS contains a Cross-Site Request Forgery (CSRF) vulnerability across multiple endpoints that fails to enforce token verification on POST requests. An authenticated user can be tricked into visiting a malicious website crafted by an attacker, which automatically submits unauthorized requests (such as data deletion) to the Raytha CMS application without requiring explicit user confirmation. This vulnerability affects Raytha CMS versions prior to 1.4.6 and has a CVSS score of 6.9 with medium real-world exploitability.

Technical ContextAI

The vulnerability stems from insufficient CSRF protection mechanisms within Raytha CMS, classified under CWE-352 (Cross-Site Request Forgery). Modern web applications typically mitigate CSRF attacks through synchronizer tokens (CSRF tokens) or SameSite cookie attributes that validate POST requests originate from legitimate in-application forms rather than external sources. Raytha CMS fails to implement proper token verification on sensitive endpoints, allowing an unauthenticated attacker to craft a request that leverages an authenticated victim's active session. The CVSS vector (CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N) indicates network accessibility with low complexity and requires user interaction, with high integrity impact (data modification/deletion possible). The vulnerability affects Raytha CMS product line prior to version 1.4.6 (CPE data would reference cpe:2.3:a:raytha:raytha_cms).

RemediationAI

Upgrade Raytha CMS to version 1.4.6 or later as soon as possible, which includes the necessary CSRF token verification fixes. This is the primary and most reliable remediation. As an interim mitigation prior to patching, restrict administrative access to Raytha CMS via network-level controls (IP whitelisting, VPN requirements), enforce HTTPS with HSTS headers to prevent man-in-the-middle attacks that could facilitate CSRF, implement SameSite=Strict cookie attributes if configurable, and educate administrators to avoid visiting untrusted websites while authenticated to Raytha CMS. Verify the upgrade is successful by confirming version 1.4.6 or higher is running and reviewing application logs for any suspicious POST requests from unauthorized sources.

More in Raytha

View all
CVE-2026-12076 CRITICAL
9.3 Jun 30

SQL injection in Raytha CMS 1.5.2 lets a remote, unauthenticated attacker inject arbitrary SQL through the OData filter

CVE-2025-15540 HIGH
8.8 Mar 16

A code injection vulnerability in Raytha CMS's Functions module allows privileged users to execute arbitrary .NET operat

CVE-2025-69240 HIGH
7.5 Mar 16

A host header injection vulnerability in Raytha CMS allows attackers to hijack password reset tokens by spoofing X-Forwa

CVE-2025-69243 MEDIUM
6.9 Mar 16

Raytha CMS contains a user enumeration vulnerability in its password reset functionality where differing error messages

CVE-2025-69246 MEDIUM
6.9 Mar 16

Raytha CMS lacks brute force protection mechanisms, allowing attackers to conduct unlimited automated login attempts wit

CVE-2025-69241 MEDIUM
5.3 Mar 16

Raytha CMS contains a Stored Cross-Site Scripting (XSS) vulnerability in the profile editing functionality, specifically

CVE-2025-69245 MEDIUM
5.1 Mar 16

Raytha CMS contains a Reflected Cross-Site Scripting (XSS) vulnerability in the logon functionality's returnUrl paramete

CVE-2025-69242 MEDIUM
5.1 Mar 16

Raytha CMS contains a reflected cross-site scripting (XSS) vulnerability in the backToListUrl parameter that allows unau

CVE-2025-69237 MEDIUM
5.1 Mar 16

Raytha CMS contains a Stored Cross-Site Scripting (XSS) vulnerability in the page creation functionality through the Fie

CVE-2025-69236 MEDIUM
5.1 Mar 16

Raytha CMS contains a Stored Cross-Site Scripting (XSS) vulnerability in the post editing functionality, specifically wi

CVE-2025-69239 MEDIUM
5.1 Mar 16

Raytha CMS contains a Server-Side Request Forgery (SSRF) vulnerability in its Theme Import from URL feature that allows

Share

CVE-2025-69238 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy