CVE-2025-5182

Medium CVSS: 5.3

A vulnerability has been found in Summer Pearl Group Vacation Rental Management Platform up to 1.0.1 and classified as critical. This vulnerability affects unknown code of the component Listing Handler. The manipulation leads to authorization bypass. The attack can be initiated remotely. Upgrading to version 1.0.2 is able to address this issue. It is recommended to upgrade the affected component.

Vendor

Summerpearlgroup

Product

Vacation Rental Management Platform

CWE

CWE-285

Yayın Tarihi

2025-05-26 11:15:24

Güncelleme

2025-06-03 15:45:55

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-285 Vacation Rental Management Platform MEDIUM Summerpearlgroup 2025

Referanslar

https://github.com/Stolichnayer/Summer-Pearl-Group-IDOR-XSS https://summerpearlgroup.gr/spgpm/releases https://vuldb.com/?ctiid.310270 https://vuldb.com/?id.310270 https://www.youtube.com/watch?v=0wwuatTa6sU https://github.com/Stolichnayer/Summer-Pearl-Group-IDOR-XSS

Benzer Kayıtlar

Medium

CVE-2025-63563

Summer Pearl Group Vacation Rental Management Platform prior to v1.0.2 does not properly invalidate active user sessions…

High

CVE-2025-63561

Summer Pearl Group Vacation Rental Management Platform prior to 1.0.2 is susceptible to a Slowloris-style Denial-of-Serv…

Medium

CVE-2025-63562

Summer Pearl Group Vacation Rental Management Platform prior to v1.0.2 suffers from insufficient server-side authorizati…

Medium

CVE-2025-5183

A vulnerability was found in Summer Pearl Group Vacation Rental Management Platform up to 1.0.1 and classified as proble…

Medium

CVE-2025-5184

A vulnerability was found in Summer Pearl Group Vacation Rental Management Platform up to 1.0.1. It has been classified…

Medium

CVE-2025-5181

A vulnerability, which was classified as problematic, was found in Summer Pearl Group Vacation Rental Management Platfor…