CVE-2025-15203

Name of the Vulnerable Software and Affected Versions SohuTV CacheCloud versions up to 3.2.0

Description A flaw exists in SohuTV CacheCloud that allows for cross site scripting. The issue is located in the index function within the file src/main/java/com/sohu/cache/web/controller/ResourceController.java. Remote attackers can exploit this by manipulating the application. The exploit is publicly available.

Recommendations Versions prior to 3.2.0 are affected. At the moment, there is no information about a newer version that contains a fix for this vulnerability.