CVE-2025-15204 | SohuTV CacheCloud up to 3.2.0 QuartzManageController.java doQuartzList cross site scripting (Issue 376)

A vulnerability classified as problematic was found in SohuTV CacheCloud up to 3.2.0. Affected is the function doQuartzList of the file src/main/java/com/sohu/cache/web/controller/QuartzManageController.java. Executing manipulation can lead to cross site scripting.

This vulnerability is registered as CVE-2025-15204. It is possible to launch the attack remotely. Furthermore, an exploit is available.

The project was informed of the problem early through an issue report but has not responded yet.

CVE-2025-15204 | SohuTV CacheCloud up to 3.2.0 QuartzManageController.java doQuartzList cross site scripting (Issue 376)

Post correlati

CVE-2024-50387 | QNAP SMB Service prior 4.15.002/h4.15.002 sql injection (qsa-24-42)

CVE-2024-7846 | YITH WooCommerce Ajax Search Plugin up to 2.7.0 on WordPress Block Attribute cross site scripting

CVE-2024-40503 | Tenda AX12 16.03.49.18_cn+ ICMP Packet denial of service

CVE-2024-35144 | IBM Maximo Application Suite 8.10.0/8.11.0/9.0.0 Monitor sensitive information in source