CVE-2025-15173

Name of the Vulnerable Software and Affected Versions SohuTV CacheCloud versions through 3.2.0

Description A weakness exists in SohuTV CacheCloud that allows for cross site scripting. The issue is located in the advancedAnalysis function within the src/main/java/com/sohu/cache/web/controller/InstanceController.java file. This manipulation can be carried out remotely. The exploit has been made publicly available. The project was informed of the issue but has not responded.

Recommendations Versions prior to 3.2.0 are affected. At the moment, there is no information about a newer version that contains a fix for this vulnerability.