CVE-2025-15174

Name of the Vulnerable Software and Affected Versions SohuTV CacheCloud versions up to 3.2.0

Description A security issue exists in SohuTV CacheCloud. This issue allows for cross site scripting, potentially exploitable from a remote location. The vulnerable component is the doAppAuditList function within the AppManageController.java file located in src/main/java/com/sohu/cache/web/controller/. The exploit for this issue has been publicly disclosed.

Recommendations Versions prior to 3.2.0 should be updated. As a temporary workaround, consider restricting access to the doAppAuditList function until a patch is available.