Lucene search
K

52 matches found

OSV
OSV
added 2025/10/31 9:15 p.m.11 views

CVE-2025-63563

Summer Pearl Group Vacation Rental Management Platform prior to v1.0.2 does not properly invalidate active user sessions after a password change. This allows an attacker with a valid session token to maintain access to the account even after the legitimate user changes their password...

6.5CVSS5.8AI score0.00242EPSS
Exploits0References1
OSV
OSV
added 2025/10/31 8:15 p.m.5 views

CVE-2025-63562

Summer Pearl Group Vacation Rental Management Platform prior to v1.0.2 suffers from insufficient server-side authorization. Authenticated attackers can call several endpoints and perform create/update/delete actions on resources owned by arbitrary users by manipulating request parameters e.g.,...

6.3CVSS5.9AI score0.00178EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/31 12:0 a.m.4 views

Summer Pearl Group Vacation Rental Management Platform 安全漏洞

Summer Pearl Group Vacation Rental Management Platform is a vacation rental property management software platform from Summer Pearl Group, Greece. A security vulnerability exists in Summer Pearl Group Vacation Rental Management Platform versions prior to 1.0.2, which stems from insufficient...

6.3CVSS6.6AI score0.00178EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/10/31 12:0 a.m.6 views

PT-2025-44673

Name of the Vulnerable Software and Affected Versions Summer Pearl Group Vacation Rental Management Platform versions prior to 1.0.2 Description The Summer Pearl Group Vacation Rental Management Platform does not invalidate active user sessions after a password change. This allows an attacker...

6.5CVSS6.8AI score0.00242EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/10/31 12:0 a.m.7 views

CVE-2025-63561

Summer Pearl Group Vacation Rental Management Platform prior to 1.0.2 is susceptible to a Slowloris-style Denial-of-Service DoS condition in the HTTP connection handling layer, where an attacker that opens and maintains many slow or partially-completed HTTP connections can exhaust the server’s...

7.5CVSS0.00367EPSS
Exploits1References1
CVE
CVE
added 2025/10/31 12:0 a.m.12 views

CVE-2025-63563

The CVE-2025-63563 affects Summer Pearl Group Vacation Rental Management Platform prior to v1.0.2. The root cause is improper invalidation of active sessions after a password change, enabling an attacker with a valid session token to retain access after the legitimate user changes their password....

6.5CVSS6.5AI score0.00242EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2025/10/31 12:0 a.m.13 views

CVE-2025-63561

CVE-2025-63561 affects the Summer Pearl Group Vacation Rental Management Platform prior to version 1.0.2 . The vulnerability is a Slowloris-style denial-of-service in the HTTP connection handling layer, where an attacker can open and maintain many slow or incomplete HTTP connections to exhaust th...

7.5CVSS6.4AI score0.00367EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2025/10/31 12:0 a.m.3 views

Summer Pearl Group Vacation Rental Management Platform 安全漏洞

Summer Pearl Group Vacation Rental Management Platform is a vacation rental property management software platform from Summer Pearl Group, Greece. A security vulnerability exists in Summer Pearl Group Vacation Rental Management Platform versions prior to 1.0.2, which stems from a password change...

6.5CVSS6.7AI score0.00242EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/10/31 12:0 a.m.6 views

PT-2025-44671

Name of the Vulnerable Software and Affected Versions Summer Pearl Group Vacation Rental Management Platform versions prior to 1.0.2 Description The Summer Pearl Group Vacation Rental Management Platform is affected by inadequate server-side authorization. Authenticated attackers can access and...

6.3CVSS6.7AI score0.00178EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2025/10/31 12:0 a.m.4 views

CVE-2025-63561

Summer Pearl Group Vacation Rental Management Platform prior to 1.0.2 is susceptible to a Slowloris-style Denial-of-Service DoS condition in the HTTP connection handling layer, where an attacker that opens and maintains many slow or partially-completed HTTP connections can exhaust the server’s...

7.5CVSS6.4AI score0.00367EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-16273

Malicious code in bioql PyPI...

5.1CVSS4.8AI score0.00238EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-16271

Malicious code in bioql PyPI...

5.1CVSS4.8AI score0.00369EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2025-16272

Malicious code in bioql PyPI...

7.5CVSS4.9AI score0.00348EPSS
Exploits2References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-28400

Malicious code in bioql PyPI...

5.3CVSS4.9AI score0.00195EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/28 12:32 p.m.19 views

CVE-2025-5184

A vulnerability was found in Summer Pearl Group Vacation Rental Management Platform up to 1.0.1. It has been classified as problematic. Affected is an unknown function of the component HTTP Response Header Handler. The manipulation leads to information disclosure. It is possible to launch the...

7.5CVSS6.6AI score0.00316EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/28 12:32 p.m.16 views

CVE-2025-5185

A vulnerability was found in Summer Pearl Group Vacation Rental Management Platform up to 1.0.1. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross-site request forgery. The attack can be launched remotely. Upgrading to...

5.3CVSS6.8AI score0.00195EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/28 11:50 a.m.16 views

CVE-2025-5183

A vulnerability was found in Summer Pearl Group Vacation Rental Management Platform up to 1.0.1 and classified as problematic. This issue affects some unknown processing of the component Header Handler. The manipulation of the argument Host leads to open redirect. The attack may be initiated...

5.1CVSS6.9AI score0.00238EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/28 11:50 a.m.15 views

CVE-2025-5182

A vulnerability has been found in Summer Pearl Group Vacation Rental Management Platform up to 1.0.1 and classified as critical. This vulnerability affects unknown code of the component Listing Handler. The manipulation leads to authorization bypass. The attack can be initiated remotely. Upgradin...

7.5CVSS7.1AI score0.00348EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/28 10:47 a.m.9 views

CVE-2025-5181

A vulnerability, which was classified as problematic, was found in Summer Pearl Group Vacation Rental Management Platform up to 1.0.1. This affects an unknown part of the file /spgpm/updateListing. The manipulation of the argument spgLsTitle leads to cross site scripting. It is possible to initia...

5.1CVSS6.2AI score0.00369EPSS
Exploits1References1
NVD
NVD
added 2025/05/26 1:15 p.m.15 views

CVE-2025-5185

A vulnerability was found in Summer Pearl Group Vacation Rental Management Platform up to 1.0.1. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross-site request forgery. The attack can be launched remotely. Upgrading to...

5.3CVSS0.00195EPSS
Exploits0References3
Rows per page
Query Builder