CVE-2025-5184 MEDIUM

CVE-2025-5184: Summer Pearl Group Vacation Rental Management Platform HTTP Response Header information disclosure

Vendor Summer Pearl Group

Product Vacation Rental Management Platform

Weakness CWE-200 · Info exposure

Published May 26, 2025

Last update May 28, 2025

View on NVD All CVEs

CVSS base score

5.3/10

Attack vector Network

Attack complexity Low

Privileges required Low

User interaction None

Confidentiality —

Integrity —

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

What the vulnerability does

01Description

A vulnerability was found in Summer Pearl Group Vacation Rental Management Platform up to 1.0.1. It has been classified as problematic. Affected is an unknown function of the component HTTP Response Header Handler. The manipulation leads to information disclosure. It is possible to launch the attack remotely. Upgrading to version 1.0.2 is able to address this issue. It is recommended to upgrade the affected component.

Key dates

02Disclosure timeline

May 26, 2025 CVE published

May 28, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2025-5184

Related vulnerabilities

Identifiers

CVE CVE-2025-5184

CWE CWE-200

CVSS 5.3 / MEDIUM

Affected versions

Vendor Summer Pearl Group

Product Vacation Rental Management Platform

Affected 1.0.0

Vendor Summer Pearl Group

Product Vacation Rental Management Platform

Affected 1.0.1

CVE-2025-5184: Summer Pearl Group Vacation Rental Management Platform HTTP Response Header information disclosure

01Description

02Disclosure timeline

03References

04Related CVE