What is CVE-2025-15202 — XSS in SohuTV CacheCloud?

CVE-2025-15202 is a cross-site scripting (XSS) vulnerability affecting SohuTV CacheCloud versions 3.0-3.2.0, allowing attackers to inject malicious scripts.

Am I affected by CVE-2025-15202 in SohuTV CacheCloud?

If you are using SohuTV CacheCloud versions 3.0, 3.1, or 3.2.0, you are potentially affected by this vulnerability.

How do I fix CVE-2025-15202 in SohuTV CacheCloud?

Upgrade to SohuTV CacheCloud version 3.2.1 or later to resolve this XSS vulnerability. Consider input validation and WAF rules as temporary mitigations.

Is CVE-2025-15202 being actively exploited?

While active exploitation is not confirmed, the vulnerability has been publicly disclosed, increasing the risk of exploitation.

Where can I find the official SohuTV advisory for CVE-2025-15202?

Please refer to the SohuTV project's official website or security channels for the advisory related to CVE-2025-15202.

CVE-2025-15202 — Vulnerability Details

NEXTGUARD

Escanear grátis

CVE-2025-15202 — Vulnerability Details | NextGuard

Passos de Detecçãotraduzindo…

• java / server:

find /opt/sohutv/cachecloud/ -name "TaskController.java"

• java / server:

grep -r "taskQueueList" /opt/sohutv/cachecloud/

• generic web:

curl -I http://your-cachecloud-server/taskQueueList

• generic web:

grep -A 10 "taskQueueList" /var/log/apache2/access.log

SohuTV CacheCloud TaskController.java taskQueueList cross site scripting

Impacto e Cenários de Ataquetraduzindo…

Contexto de Exploraçãotraduzindo…

Quem Está em Riscotraduzindo…

Passos de Detecçãotraduzindo…

Linha do Tempo do Ataque

Inteligência de Ameaças

Software Afetado

Classificação de Fraqueza (CWE)

Linha do tempo

Mitigação e Soluções Alternativastraduzindo…

Como corrigirtraduzindo…

Boletim de Segurança CVE

Perguntas frequentestraduzindo…

What is CVE-2025-15202 — XSS in SohuTV CacheCloud?

Am I affected by CVE-2025-15202 in SohuTV CacheCloud?

How do I fix CVE-2025-15202 in SohuTV CacheCloud?

Is CVE-2025-15202 being actively exploited?

Where can I find the official SohuTV advisory for CVE-2025-15202?

Seu projeto está afetado?

Detecte esta CVE no seu projeto