XSS in Raytha

CVE-2025-69245

Raytha CMS is vulnerable to Reflected XSS via returnUrl parameter in logon functionality. An attacker can craft a malicious URL which, when opened by the authenticated victim, results in arbitrary JavaScript execution in the victim’s brows…

Vulnerability class: XSS (Cross-Site Scripting)

EPSS: 0.000 (15.7th percentile) — read the EPSS interpretation.