Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Summer Pearl Group Vacation Rental Management Platform prior to v1.0.2 suffers from insufficient server-side authorization. Authenticated attackers can call several endpoints and perform create/update/delete actions on resources owned by arbitrary users by manipulating request parameters (e.g., owner or resource id).
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
N/A
Vulnerability Title
Summer Pearl Group Vacation Rental Management Platform 安全漏洞
Vulnerability Description
Summer Pearl Group Vacation Rental Management Platform是希腊Summer Pearl Group公司的一款度假租赁物业管理的软件平台。 Summer Pearl Group Vacation Rental Management Platform 1.0.2之前版本存在安全漏洞,该漏洞源于服务器端授权不足,可能导致经过身份验证的攻击者通过操纵请求参数对任意用户资源执行创建、更新或删除操作。
CVSS Information
N/A
Vulnerability Type
N/A