Primary

Context

Summer Pearl Group Vacation Rental Management Platform Host Header Poisoning Vulnerability Allowing Information Disclosure

Vulnerability

A vulnerability exists in the Summer Pearl Group Vacation Rental Management Platform in versions prior to 1.0.1. The issue arises from an unknown function in the HTTP Response Header Handler component, leading to information disclosure. This vulnerability can be exploited remotely by manipulating Host headers, which may interfere with redirects and facilitate phishing attacks using malicious domains.

Impact

Exploitation of this vulnerability allows for information disclosure, specifically server version details, which could be used in targeted reconnaissance and exploitation attempts.

Remediation

Users are advised to upgrade to Summer Pearl Group Vacation Rental Management Platform version 1.0.2, which addresses this vulnerability. Instructions for downloading the latest version are available on the Summer Pearl Group website.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

5.2

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

5.2

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Summer Pearl Group Vacation Rental Management Platform Host Header Poisoning Vulnerability Allowing Information Disclosure

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating