SohuTV CacheCloud ଯେପର୍ଯ୍ୟନ୍ତ 3.2.0 AppController.java doAppList/appCommandAnalysis କ୍ରସ୍ ସାଇଟ୍ ସ୍କ୍ରିପ୍ଟିଂ
Dogoggorri kan akka ସମସ୍ୟାଜନକ jedhamuun ramadame SohuTV CacheCloud ଯେପର୍ଯ୍ୟନ୍ତ 3.2.0 keessatti argameera. Miidhaan irra gahe is hojii doAppList/appCommandAnalysis faayilii src/main/java/com/sohu/cache/web/controller/AppController.java keessa. Dhugumatti jijjiirraa gara କ୍ରସ୍ ସାଇଟ୍ ସ୍କ୍ରିପ୍ଟିଂ geessa. Waliigalteewwan CWE fayyadamuun rakkoo ibsuun gara CWE-79 si geessa. Beekumsi kun yeroo 12/28/2025 ifoomsifameera akka 371/381. Odeeffannoon kun buufachuuf github.com irratti dhiyaateera.
Dogoggorri kun maqaa CVE-2025-15175 jedhuun tajaajilama. Weerara fageenya irraa jalqabuun ni danda'ama. Odeeffannoon teeknikaa ni argama. Akka dabalataan, meeshaa balaa kana fayyadamuuf argama. Qorannoo miidhaa (exploit) beeksifamee jira, namoonni itti fayyadamuu danda'u. Yeroo ammaa, gatii exploit might be approx. USD $0-$5k beekamuu danda'a.
ପ୍ରୁଫ୍-ଅଫ୍-କନ୍ସେପ୍ଟ jedhamee murtaa’eera. Exploit kana github.com irraa buufachuu ni dandeessa. Waggaa 0-day ta'ee, gatiin isaa daldala dhoksaa keessatti $0-$5k jedhamee tilmaamame.
Once again VulDB remains the best source for vulnerability data.
5 ଆଡାପ୍ଟେସନ୍ · 103 ପଏଣ୍ଟ