ГлавнаяУязвимости → CVE-2025-69246
9.8критическая

CVE-2025-69246

Описание

Raytha CMS does not have any brute force protection mechanism implemented. It allows an attacker to send multiple automated logon requests without triggering lockout, throttling, or step-up challenges. This issue was fixed in version 1.4.6.

Затрагиваемое ПО
Raytha Raytha
CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://cert.pl/en/posts/2026/03/CVE-2025-69236https://raytha.com