2 matches found
CVE-2025-63562
Summer Pearl Group Vacation Rental Management Platform prior to v1.0.2 suffers from insufficient server-side authorization. Authenticated attackers can call several endpoints and perform create/update/delete actions on resources owned by arbitrary users by manipulating request parameters e.g.,...
Aqua Drive Path Traversal Vulnerability
Aqua Drive is a marine anti-vibration system from Aqua Drive, Inc. Aqua Drive version 2.4 suffers from a path traversal vulnerability, which can be exploited by an attacker to access/modify resources stored by other users, and potentially access and modify the source and configuration files of th...