CVE Details
Basic Information
| Title | Summer Pearl Group Vacation Rental Management Platform Header redirect |
|---|---|
| Type | cve |
| Published | 2025-05-26T11:31:04.460Z |
| Last Seen |
Product Information
| Vendor | Summer Pearl Group |
|---|---|
| Product | Vacation Rental Management Platform |
| Version | 1.0.0 |
CVSS Information
| Base Score | 5.1 (MEDIUM) |
|---|---|
| Attack Vector | CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N |
| Confidentiality Impact | |
| Integrity Impact | |
| Availability Impact |
AI Analysis
| AI Description | A vulnerability in the Vacation Rental Management Platform allows remote attackers to perform an open redirect via the Host header. This is fixed in version 1.0.2. |
|---|---|
| AI Severity | Medium |
| Vendor | Summer Pearl Group |
| Product | Vacation Rental Management Platform |
| Affected Version | 1.0.0, 1.0.1 |
Additional Information
| CVE List | |
|---|---|
| CWE List | CWE-601 |
| Bulletin Family | |
| Source Data | Summer Pearl Group Vacation Rental Management Platform 1.0.0 Summer Pearl Group Vacation Rental Management Platform 1.0.1 |
Source Information
| Source Data | Summer Pearl Group Vacation Rental Management Platform 1.0.0 Summer Pearl Group Vacation Rental Management Platform 1.0.1 |
|---|---|
| Source Link |
Description
A vulnerability was found in Summer Pearl Group Vacation Rental Management Platform up to 1.0.1 and classified as problematic. This issue affects some unknown processing of the component Header Handler. The manipulation of the argument Host leads to open redirect. The attack may be initiated remotely. Upgrading to version 1.0.2 is able to address this issue. It is recommended to upgrade the affected component.
CVSS Score Summary
Base Score: 5.1 (MEDIUM)