CVE-2025-15172

Name of the Vulnerable Software and Affected Versions SohuTV CacheCloud versions up to 3.2.0

Description A security flaw exists in SohuTV CacheCloud that allows for cross site scripting. This issue impacts the preview function within the file src/main/java/com/sohu/cache/web/controller/RedisConfigTemplateController.java. The attack can be executed remotely. The exploit has been released publicly and may be exploited. The project was informed of the issue but has not yet responded.

Recommendations Versions up to 3.2.0 are affected. At the moment, there is no information about a newer version that contains a fix for this vulnerability.