Lucene search
K

12 matches found

OSV
OSV
added 2025/10/31 8:15 p.m.6 views

CVE-2025-63562

Summer Pearl Group Vacation Rental Management Platform prior to v1.0.2 suffers from insufficient server-side authorization. Authenticated attackers can call several endpoints and perform create/update/delete actions on resources owned by arbitrary users by manipulating request parameters e.g.,...

6.3CVSS5.9AI score0.00178EPSS
Exploits0References1
CVE
CVE
added 2025/10/31 12:0 a.m.13 views

CVE-2025-63563

The CVE-2025-63563 affects Summer Pearl Group Vacation Rental Management Platform prior to v1.0.2. The root cause is improper invalidation of active sessions after a password change, enabling an attacker with a valid session token to retain access after the legitimate user changes their password....

6.5CVSS6.5AI score0.00242EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2025/10/31 12:0 a.m.17 views

CVE-2025-63561

CVE-2025-63561 affects the Summer Pearl Group Vacation Rental Management Platform prior to version 1.0.2 . The vulnerability is a Slowloris-style denial-of-service in the HTTP connection handling layer, where an attacker can open and maintain many slow or incomplete HTTP connections to exhaust th...

7.5CVSS6.4AI score0.00367EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/10/31 12:0 a.m.6 views

PT-2025-44671

Name of the Vulnerable Software and Affected Versions Summer Pearl Group Vacation Rental Management Platform versions prior to 1.0.2 Description The Summer Pearl Group Vacation Rental Management Platform is affected by inadequate server-side authorization. Authenticated attackers can access and...

6.3CVSS6.7AI score0.00178EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/10/31 12:0 a.m.9 views

CVE-2025-63561

Summer Pearl Group Vacation Rental Management Platform prior to 1.0.2 is susceptible to a Slowloris-style Denial-of-Service DoS condition in the HTTP connection handling layer, where an attacker that opens and maintains many slow or partially-completed HTTP connections can exhaust the server’s...

7.5CVSS0.00367EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/10/31 12:0 a.m.7 views

PT-2025-44673

Name of the Vulnerable Software and Affected Versions Summer Pearl Group Vacation Rental Management Platform versions prior to 1.0.2 Description The Summer Pearl Group Vacation Rental Management Platform does not invalidate active user sessions after a password change. This allows an attacker...

6.5CVSS6.8AI score0.00242EPSS
Exploits0References5
OSV
OSV
added 2025/05/26 11:15 a.m.5 views

CVE-2025-5181

A vulnerability, which was classified as problematic, was found in Summer Pearl Group Vacation Rental Management Platform up to 1.0.1. This affects an unknown part of the file /spgpm/updateListing. The manipulation of the argument spgLsTitle leads to cross site scripting. It is possible to initia...

4.1CVSS3.7AI score0.00369EPSS
Exploits1References7
CNNVD
CNNVD
added 2025/05/26 12:0 a.m.4 views

Summer Pearl Vacation Rental Management Platform 代码注入漏洞

Summer Pearl Vacation Rental Management Platform is a vacation rental management platform from Summer Pearl. A code injection vulnerability exists in Summer Pearl Vacation Rental Management Platform version 1.0.1 and earlier, which stems from cross-site scripting due to the operation of parameter...

5.1CVSS4.9AI score0.00369EPSS
Exploits1References7
CNNVD
CNNVD
added 2025/05/26 12:0 a.m.5 views

Summer Pearl Vacation Rental Management Platform 输入验证错误漏洞

Summer Pearl Vacation Rental Management Platform is a vacation rental management platform from Summer Pearl, Inc. An input validation error vulnerability exists in Summer Pearl Vacation Rental Management Platform version 1.0.1 and prior versions, which stems from an open redirect due to the...

5.1CVSS4.8AI score0.00238EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/05/26 12:0 a.m.5 views

Summer Pearl Vacation Rental Management Platform 安全漏洞

Summer Pearl Vacation Rental Management Platform is a vacation rental management platform from Summer Pearl, Inc. A security vulnerability exists in Summer Pearl Vacation Rental Management Platform version 1.0.1 and earlier, which originates from cross-site request forgery...

5.3CVSS4.9AI score0.00195EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/05/26 12:0 a.m.6 views

Summer Pearl Vacation Rental Management Platform 访问控制错误漏洞

Summer Pearl Vacation Rental Management Platform is a vacation rental management platform from Summer Pearl, Inc. An access control error vulnerability exists in Summer Pearl Vacation Rental Management Platform version 1.0.1 and prior versions, which stems from information disclosure...

7.5CVSS4.7AI score0.00316EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/05/26 12:0 a.m.5 views

Summer Pearl Vacation Rental Management Platform 安全漏洞

Summer Pearl Vacation Rental Management Platform is a vacation rental management platform from Summer Pearl, Inc. A security vulnerability exists in Summer Pearl Vacation Rental Management Platform version 1.0.1 and prior versions that originates from an authorization bypass issue...

7.5CVSS4.9AI score0.00348EPSS
Exploits2References5
Rows per page
Query Builder