Soumettre #716307: SohuTV CacheCloud <=3.2.0 Reflected XSSinformation

TitreSohuTV CacheCloud <=3.2.0 Reflected XSS
DescriptionIn the latest version (v3.2) of CacheCloud, the endpoint /admin/instance/advancedAnalysis does not encode user-controllable parameters when outputting them on web page, resulting in XSS vulnerability. This allows attackers to launch XSS attacks against users.
La source⚠️ https://github.com/sohutv/cachecloud/issues/369
Utilisateur
 ZAST.AI (UID 87884)
Soumission16/12/2025 08:59 (il y a 4 mois)
Modérer28/12/2025 09:19 (12 days later)
StatutAccepté
Entrée VulDB338558 [SohuTV CacheCloud jusqu’à 3.2.0 InstanceController.java advancedAnalysis cross site scripting]
Points17

PrécédentAperçuSuivant

Interested in the pricing of exploits?

See the underground prices here!