← voltar
CVE-2025-15202

SohuTV CacheCloud TaskController.java taskQueueList cross site scripting

CVSS 4.8 MEDIUMEPSS 0.2%CWE-79CWE-94
A vulnerability has been found in SohuTV CacheCloud up to 3.2.0. This affects the function taskQueueList of the file src/main/java/com/sohu/cache/web/controller/TaskController.java. Such manipulation leads to cross site scripting. The attack may be performed from remote. The exploit has been disclosed to the public and may be used. The project was informed of the problem early through an issue report but has not responded yet.
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P
Produtos afetados
SohuTV · CacheCloud

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://github.com/sohutv/cachecloud/issues/374https://vuldb.com/?ctiid.338589https://vuldb.com/?id.338589https://vuldb.com/?submit.716313