← Volver a CVEs
CVE-2025-69240
HIGH8.8
Descripcion
Raytha CMS allows an attacker to spoof `X-Forwarded-Host` or `Host` headers to attacker controlled domain. The attacker (who knows the victim's email address) can force the server to send an email with password reset link pointing to the domain from spoofed header. When victim clicks the link, browser sends request to the attacker’s domain with the token in the path allowing the attacker to capture the token. This allows the attacker to reset victim's password and take over the victim's account. This issue was fixed in version 1.4.6.
Detalles CVE
Puntuacion CVSS v3.18.8
SeveridadHIGH
Vector CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Vector de ataqueNETWORK
ComplejidadLOW
Privilegios requeridosNONE
Interaccion usuarioREQUIRED
Publicado3/16/2026
Ultima modificacion3/16/2026
Fuentenvd
Avistamientos honeypot0
Productos afectados
raytha:raytha
Debilidades (CWE)
CWE-348
Referencias
https://cert.pl/en/posts/2026/03/CVE-2025-69236(cvd@cert.pl)
https://raytha.com(cvd@cert.pl)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.