CVE-2025-5183 MEDIUM

CVE-2025-5183: Summer Pearl Group Vacation Rental Management Platform Header redirect

Vendor Summer Pearl Group

Product Vacation Rental Management Platform

Weakness CWE-601 · Open redirect

Published May 26, 2025

Last update May 28, 2025

View on NVD All CVEs

CVSS base score

5.1/10

Attack vector Network

Attack complexity Low

Privileges required Low

User interaction —

Confidentiality —

Integrity —

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

What the vulnerability does

01Description

A vulnerability was found in Summer Pearl Group Vacation Rental Management Platform up to 1.0.1 and classified as problematic. This issue affects some unknown processing of the component Header Handler. The manipulation of the argument Host leads to open redirect. The attack may be initiated remotely. Upgrading to version 1.0.2 is able to address this issue. It is recommended to upgrade the affected component.

Key dates

02Disclosure timeline

May 26, 2025 CVE published

May 28, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2025-5183 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/601.html

Related vulnerabilities

Identifiers

CVE CVE-2025-5183

CWE CWE-601

CVSS 5.1 / MEDIUM

Affected versions

Vendor Summer Pearl Group

Product Vacation Rental Management Platform

Affected 1.0.0

Vendor Summer Pearl Group

Product Vacation Rental Management Platform

Affected 1.0.1

CVE-2025-5183: Summer Pearl Group Vacation Rental Management Platform Header redirect

01Description

02Disclosure timeline

03References

04Related CVE