RCE in Raytha

CVE-2025-15540

"Functions" module in Raytha CMS allows privileged users to write custom code to add functionality to application. Due to a lack of sandboxing or access restrictions, JavaScript code executed through Raytha’s “functions” feature can instan…

Vulnerability class: RCE (Remote Code Execution)

EPSS: 0.001 (20.3th percentile) — read the EPSS interpretation.