CVE Details
Basic Information
| Title | Summer Pearl Group Vacation Rental Management Platform Listing authorization |
|---|---|
| Type | cve |
| Published | 2025-05-26T11:00:08.192Z |
| Last Seen |
Product Information
| Vendor | Summer Pearl Group |
|---|---|
| Product | Vacation Rental Management Platform |
| Version | 1.0.0 |
CVSS Information
| Base Score | 5.3 (MEDIUM) |
|---|---|
| Attack Vector | CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N |
| Confidentiality Impact | |
| Integrity Impact | |
| Availability Impact |
AI Analysis
| AI Description | The Summer Pearl Group Vacation Rental Management Platform up to version 1.0.1 has a critical vulnerability in the Listing Handler component, allowing remote attackers to bypass authorization. Upgrading to version 1.0.2 fixes this issue. |
|---|---|
| AI Severity | Medium |
| Vendor | Summer Pearl Group |
| Product | Vacation Rental Management Platform |
| Affected Version | 1.0.0, 1.0.1 |
Additional Information
| CVE List | |
|---|---|
| CWE List | CWE-639, CWE-285 |
| Bulletin Family | |
| Source Data | Summer Pearl Group Vacation Rental Management Platform 1.0.0 Summer Pearl Group Vacation Rental Management Platform 1.0.1 |
Source Information
| Source Data | Summer Pearl Group Vacation Rental Management Platform 1.0.0 Summer Pearl Group Vacation Rental Management Platform 1.0.1 |
|---|---|
| Source Link |
Description
A vulnerability has been found in Summer Pearl Group Vacation Rental Management Platform up to 1.0.1 and classified as critical. This vulnerability affects unknown code of the component Listing Handler. The manipulation leads to authorization bypass. The attack can be initiated remotely. Upgrading to version 1.0.2 is able to address this issue. It is recommended to upgrade the affected component.
CVSS Score Summary
Base Score: 5.3 (MEDIUM)