CVE-2025-15204 | SohuTV CacheCloud up to 3.2.0 QuartzManageController.java doQuartzList cross site scripting (Issue 376)

A vulnerability classified as problematic was found in SohuTV CacheCloud up to 3.2.0. Affected is the function doQuartzList of the file src/main/java/com/sohu/cache/web/controller/QuartzManageController.java. Executing manipulation can lead to cross site scripting.

This vulnerability is registered as CVE-2025-15204. It is possible to launch the attack remotely. Furthermore, an exploit is available.

The project was informed of the problem early through an issue report but has not responded yet.

CVE-2025-15204 | SohuTV CacheCloud up to 3.2.0 QuartzManageController.java doQuartzList cross site scripting (Issue 376)

Post correlati

CVE-2024-7570 | Ivanti Neurons for ITSM up to 2023.2/2023.3/2023.4 certificate validation

CVE-2024-0242 | Qolsys IQ Panel 4/IQ4 Hub up to 4.4.1 Setting information disclosure (icsa-24-039-01)

CVE-2025-1967 | code-projects Blood Bank Management System 1.0 donor.php name cross site scripting

CVE-2025-47865 | Trend Micro Apex Central Widget getObjWGFServiceApiByApiName file inclusion