CVE-2025-67170
MEDIUMDescription
A reflected cross-site scripting (XSS) vulnerability in RiteCMS v3.1.0 allows attackers to execute arbitrary code in the context of a user's browser via a crafted payload.
Is your site exposed to CVE-2025-67170?
Run a free security scan — no signup, results in seconds.
CVSS v3.1 Score
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| ritecms | ritecms |
References
Frequently Asked Questions
What is CVE-2025-67170? +
How severe is CVE-2025-67170? +
What products are affected by CVE-2025-67170? +
How do I check if I'm vulnerable to CVE-2025-67170? +
Related Vulnerabilities
Zervit's portable HTTP/web server is vulnerable to remote DoS attacks when a configuration reset request is made. The vulnerability is …
A POST request sent to a specific webserver endpoint can be used to write to arbitrary file locations. The endpoint …
Penetration Testing engineers at Amazon have discovered a flaw where the camera system fails to properly handle data supplied in …
A security flaw was found in certain NETGEAR RAX models that could allow a logged-in user to send specially crafted …
A security flaw was discovered in the NETGEAR WAX333 Access Point that could allow someone already logged in and connected …
A security flaw was discovered in certain NETGEAR Nighthawk RAX series routers that could allow someone already logged in to …