Primary

Context

Raytha CMS Cross-Site Request Forgery Vulnerability

Vulnerability

A Cross-Site Request Forgery (CSRF) vulnerability has been identified in Raytha CMS, affecting all versions prior to 1.4.6. This vulnerability allows an attacker to craft a malicious website that, when visited by an authenticated user, automatically sends a POST request to a specified endpoint, such as data deletion, without proper token verification. As a result, the attack can be executed without the user's consent or knowledge.

Impact

Exploitation of this vulnerability could lead to unauthorized actions being performed on behalf of the authenticated user, such as deleting data or modifying content.

Remediation

Users can upgrade to Raytha CMS version 1.4.6 or later to address this vulnerability.

Added: Mar 16, 2026, 2:40 PM

Updated: Mar 16, 2026, 2:40 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

6.4

remediation

0.0

relevance

4.0

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

6.4

remediation

0.0

relevance

4.0

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Raytha CMS Cross-Site Request Forgery Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating