CNNVD-202510-4395 Information
CNNVD ID
CNNVD-202510-4395
Related CVE
- CNNVD Published: 2025-10-31
Description (Chinese)
Summer Pearl Group Vacation Rental Management Platform是希腊Summer Pearl Group公司的一款度假租赁物业管理的软件平台。 Summer Pearl Group Vacation Rental Management Platform 1.0.2之前版本存在安全漏洞,该漏洞源于服务器端授权不足,可能导致经过身份验证的攻击者通过操纵请求参数对任意用户资源执行创建、更新或删除操作。
Description (English)
The Summer Peace Group. There was a security loophole in the previous version of the Summer Peace Group Operations System 1.2, which stemmed from inadequate server-end authorization, which could lead to the creation, updating or deletion of any user resource by manipulating the requested parameters.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Summer Pearl Group
Published
2025-10-31
Last Modified
2026-02-24
References
https://github.com/Stolichnayer/Summer-Pearl-Group-Broken-Access-Control https://access.redhat.com/security/cve/cve-2025-63562
Patch
https://summerpearlgroup.gr/spgpm/releases
Share on: