Skip to main content

Raytha EUVDEUVD-2025-208713

| CVE-2025-69243 MEDIUM
Observable Response Discrepancy (CWE-204)
2026-03-16 CERT-PL
6.9
CVSS 4.0 · NVD
Share

Severity by source

NVD PRIMARY
6.9 MEDIUM
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None

Lifecycle Timeline

4
Patch available
Apr 16, 2026 - 05:29 EUVD
1.5.0
EUVD ID Assigned
Mar 16, 2026 - 12:00 euvd
EUVD-2025-208713
Analysis Generated
Mar 16, 2026 - 12:00 vuln.today
CVE Published
Mar 16, 2026 - 11:54 nvd
MEDIUM 6.9

DescriptionCVE.org

Raytha CMS is vulnerable to User Enumeration in password reset functionality. Difference in messages could allow an attacker to determine if the login is valid or not, enabling a brute force attack with valid logins.

This issue was fixed in version 1.5.0.

AnalysisAI

Raytha CMS contains a user enumeration vulnerability in its password reset functionality where differing error messages reveal whether a login exists in the system, enabling attackers to build valid user lists for targeted brute force attacks. This vulnerability affects Raytha CMS versions prior to 1.5.0. The moderate CVSS score of 6.9 reflects the information disclosure risk, though real-world impact depends on how attackers chain this enumeration with other attacks.

Technical ContextAI

The vulnerability stems from CWE-204 (Observable Discrepancy), a classic information disclosure weakness where an application provides different responses based on whether user input is valid. In Raytha CMS's password reset workflow, the system likely returns distinct error messages such as 'User not found' versus 'Password reset link sent' or similar variants. This allows an attacker to distinguish between valid and invalid usernames without authentication. The root cause is insufficient input validation and inadequate response normalization in the password reset endpoint, failing to follow security best practices that recommend identical responses for both valid and invalid inputs to prevent enumeration attacks.

RemediationAI

Upgrade Raytha CMS to version 1.5.0 or later immediately to resolve the user enumeration issue. Until patching can be completed, implement defensive measures including rate limiting on password reset endpoints (enforce CAPTCHA after 5 failed attempts), implement account lockout policies after multiple failed password reset requests, and enable monitoring and alerting for bulk password reset requests from single IP addresses. Additionally, consider implementing HTTPS-only access and restricting password reset functionality to authenticated sessions or adding email verification delays to reduce enumeration speed.

More in Raytha

View all
CVE-2026-12076 CRITICAL
9.3 Jun 30

SQL injection in Raytha CMS 1.5.2 lets a remote, unauthenticated attacker inject arbitrary SQL through the OData filter

CVE-2025-15540 HIGH
8.8 Mar 16

A code injection vulnerability in Raytha CMS's Functions module allows privileged users to execute arbitrary .NET operat

CVE-2025-69240 HIGH
7.5 Mar 16

A host header injection vulnerability in Raytha CMS allows attackers to hijack password reset tokens by spoofing X-Forwa

CVE-2025-69246 MEDIUM
6.9 Mar 16

Raytha CMS lacks brute force protection mechanisms, allowing attackers to conduct unlimited automated login attempts wit

CVE-2025-69238 MEDIUM
6.9 Mar 16

Raytha CMS contains a Cross-Site Request Forgery (CSRF) vulnerability across multiple endpoints that fails to enforce to

CVE-2025-69241 MEDIUM
5.3 Mar 16

Raytha CMS contains a Stored Cross-Site Scripting (XSS) vulnerability in the profile editing functionality, specifically

CVE-2025-69245 MEDIUM
5.1 Mar 16

Raytha CMS contains a Reflected Cross-Site Scripting (XSS) vulnerability in the logon functionality's returnUrl paramete

CVE-2025-69242 MEDIUM
5.1 Mar 16

Raytha CMS contains a reflected cross-site scripting (XSS) vulnerability in the backToListUrl parameter that allows unau

CVE-2025-69237 MEDIUM
5.1 Mar 16

Raytha CMS contains a Stored Cross-Site Scripting (XSS) vulnerability in the page creation functionality through the Fie

CVE-2025-69236 MEDIUM
5.1 Mar 16

Raytha CMS contains a Stored Cross-Site Scripting (XSS) vulnerability in the post editing functionality, specifically wi

CVE-2025-69239 MEDIUM
5.1 Mar 16

Raytha CMS contains a Server-Side Request Forgery (SSRF) vulnerability in its Theme Import from URL feature that allows

Share

EUVD-2025-208713 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy