PT-2025-22924 · Unknown · Summer Pearl Group Vacation Rental Management Platform

Alex Perrakis

Publicado

2025-05-26

Atualizado

2025-12-17

CVE-2025-5182

CVSS v3.1

7.5

Alta

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Name of the Vulnerable Software and Affected Versions Summer Pearl Group Vacation Rental Management Platform versions up to 1.0.1

Description A critical vulnerability has been found in the Listing Handler component of the Summer Pearl Group Vacation Rental Management Platform, affecting unknown code and leading to authorization bypass. The attack can be initiated remotely.

Recommendations For Summer Pearl Group Vacation Rental Management Platform versions up to 1.0.1, upgrade to version 1.0.2 to address this issue. It is recommended to upgrade the affected Listing Handler component.

Exploit

Correção

IDOR

Improper Authorization

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-639CWE-285

Identificadores relacionados

CVE-2025-5182

Produtos afetados

Summer Pearl Group Vacation Rental Management Platform

PT-2025-22924 · Unknown · Summer Pearl Group Vacation Rental Management Platform

CVE-2025-5182

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 10