CVE-2025-5181 – Summer Pearl Group Vacation Rental Management Platform Cross Site Scripting Vulnerability

May 26, 2025

CVE ID : CVE-2025-5181

Published : May 26, 2025, 11:15 a.m. | 52 minutes ago

Description : A vulnerability, which was classified as problematic, was found in Summer Pearl Group Vacation Rental Management Platform up to 1.0.1. This affects an unknown part of the file /spgpm/updateListing. The manipulation of the argument spgLsTitle leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 1.0.2 is able to address this issue. It is recommended to upgrade the affected component.

Severity: 3.5 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleGitHub for Beginners: Test-driven development (TDD) with GitHub Copilot

Next Article CVE-2025-5182 – “Summer Pearl Group Vacation Rental Management Platform Listing Handler Authorization Bypass”

In-House vs. Outsource Node.js Development Teams: 9 Key Differences for the C-Suite (2025)

Why Non-Native Content Designers Improve Global UX

DevOps won’t scale without platform engineering and here’s why your teams are still stuck

This week in AI dev tools: Slack’s enterprise search, Claude Code’s analytics dashboard, and more (July 18, 2025)

DistroWatch Weekly, Issue 1131

I ditched my Bluetooth speakers for this slick turntable – and it’s more practical than I thought

This split keyboard offers deep customization – if you’re willing to go all in

I spoke with an AI version of myself, thanks to Hume’s free tool – how to try it

The details of TC39’s last meeting

The details of TC39’s last meeting

Simple wrapper for Chrome’s built-in local LLM (Gemini Nano)

Online Examination System using PHP and MySQL

Windows 11 tests “shared audio” to play music via multiple devices, new taskbar animations

Windows 11 tests “shared audio” to play music via multiple devices, new taskbar animations

WhatsApp for Windows 11 is switching back to Chromium web wrapper from UWP/native

DistroWatch Weekly, Issue 1131

CVE-2025-5181 – Summer Pearl Group Vacation Rental Management Platform Cross Site Scripting Vulnerability

Critical mcp-remote Vulnerability Enables Remote Code Execution, Impacting 437,000+ Downloads

CISA Adds Citrix NetScaler CVE-2025-5777 to KEV Catalog as Active Exploits Target Enterprises

Linux Candy: WSelector – wallpaper selector manager

CVE-2025-48922 – Drupal GLightbox Cross-Site Scripting (XSS) Vulnerability

CVE-2024-12225 – Quarkus WebAuthn Default Endpoints Information Disclosure and Authentication Bypass

CVE-2025-5829 – Autel MaxiCharger AC Wallbox Commercial JSON Stack-based Buffer Overflow Remote Code Execution

OBS Studio 31.1 Adds Linux Multitrack Video Support + More

Play With Words in Linux Terminal With This Bookmark Inspired Game

CVE-2025-3629 – IBM InfoSphere Information Server Authentication Bypass

Plotly brings vibe coding to visual data app development

CVE-2025-5181 – Summer Pearl Group Vacation Rental Management Platform Cross Site Scripting Vulnerability

Related Posts