CVE-2025-15145 | SohuTV CacheCloud up to 3.2.0 TotalManageController.java doTotalList cross site scripting (Issue 365)

Inserito da Angelo Barbosa | Dic 27, 2025 | CVE

A vulnerability, which was classified as problematic, was found in SohuTV CacheCloud up to 3.2.0. This affects the function doTotalList of the file src/main/java/com/sohu/cache/web/controller/TotalManageController.java. Such manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2025-15145. The attack can be launched remotely. Moreover, an exploit is present.

The project was informed of the problem early through an issue report but has not responded yet.

CVE-2025-15145 | SohuTV CacheCloud up to 3.2.0 TotalManageController.java doTotalList cross site scripting (Issue 365)

Post correlati

CVE-2025-10618 | itsourcecode Online Clinic Management System 1.0 transact.php firstname sql injection

CVE-2025-14219 | Campcodes Retro Basketball Shoes Online Store 1.0 /admin/admin_running.php product_image unrestricted upload

CVE-2024-53778 | Essential Marketer Essential Breadcrumbs Plugin up to 1.1.1 on WordPress cross-site request forgery

CVE-2025-30415 | Acronis Cyber Protect Cloud Agent up to 40076 improper validation of syntactic correctness of input