CVE Details
Basic Information
| Title | Summer Pearl Group Vacation Rental Management Platform cross-site request forgery |
|---|---|
| Type | cve |
| Published | 2025-05-26T12:31:04.270Z |
| Last Seen |
Product Information
| Vendor | Summer Pearl Group |
|---|---|
| Product | Vacation Rental Management Platform |
| Version | 1.0.0 |
CVSS Information
| Base Score | 5.3 (MEDIUM) |
|---|---|
| Attack Vector | CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N |
| Confidentiality Impact | |
| Integrity Impact | |
| Availability Impact |
AI Analysis
| AI Description | A cross-site request forgery (CSRF) vulnerability in the Summer Pearl Group Vacation Rental Management Platform allows attackers to perform unauthorized actions. This issue affects versions up to 1.0.1. Upgrading to version 1.0.2 resolves the vulnerability. |
|---|---|
| AI Severity | Medium |
| Vendor | Summer Pearl Group |
| Product | Vacation Rental Management Platform |
| Affected Version | 1.0.0, 1.0.1 |
Additional Information
| CVE List | |
|---|---|
| CWE List | CWE-352, CWE-862 |
| Bulletin Family | |
| Source Data | Summer Pearl Group Vacation Rental Management Platform 1.0.0 Summer Pearl Group Vacation Rental Management Platform 1.0.1 |
Source Information
| Source Data | Summer Pearl Group Vacation Rental Management Platform 1.0.0 Summer Pearl Group Vacation Rental Management Platform 1.0.1 |
|---|---|
| Source Link |
Description
A vulnerability was found in Summer Pearl Group Vacation Rental Management Platform up to 1.0.1. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross-site request forgery. The attack can be launched remotely. Upgrading to version 1.0.2 is able to address this issue. It is recommended to upgrade the affected component.
CVSS Score Summary
Base Score: 5.3 (MEDIUM)