CVE Details
Basic Information
| Title | Summer Pearl Group Vacation Rental Management Platform HTTP Response Header information disclosure |
|---|---|
| Type | cve |
| Published | 2025-05-26T12:00:11.846Z |
| Last Seen |
Product Information
| Vendor | Summer Pearl Group |
|---|---|
| Product | Vacation Rental Management Platform |
| Version | 1.0.0 |
CVSS Information
| Base Score | 5.3 (MEDIUM) |
|---|---|
| Attack Vector | CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N |
| Confidentiality Impact | |
| Integrity Impact | |
| Availability Impact |
AI Analysis
| AI Description | A vulnerability in Summer Pearl Group’s Vacation Rental Management Platform up to version 1.0.1 allows remote attackers to obtain sensitive information via the HTTP Response Header Handler. Upgrading to version 1.0.2 fixes the issue. |
|---|---|
| AI Severity | Medium |
| Vendor | Summer Pearl Group |
| Product | Vacation Rental Management Platform |
| Affected Version | 1.0.0, 1.0.1 |
Additional Information
| CVE List | |
|---|---|
| CWE List | CWE-200, CWE-284 |
| Bulletin Family | |
| Source Data | Summer Pearl Group Vacation Rental Management Platform 1.0.0 Summer Pearl Group Vacation Rental Management Platform 1.0.1 |
Source Information
| Source Data | Summer Pearl Group Vacation Rental Management Platform 1.0.0 Summer Pearl Group Vacation Rental Management Platform 1.0.1 |
|---|---|
| Source Link |
Description
A vulnerability was found in Summer Pearl Group Vacation Rental Management Platform up to 1.0.1. It has been classified as problematic. Affected is an unknown function of the component HTTP Response Header Handler. The manipulation leads to information disclosure. It is possible to launch the attack remotely. Upgrading to version 1.0.2 is able to address this issue. It is recommended to upgrade the affected component.
CVSS Score Summary
Base Score: 5.3 (MEDIUM)