Login Sign Up

CVE-2025-5184

4.3 MEDIUM

📋 TL;DR

This vulnerability in Summer Pearl Group Vacation Rental Management Platform allows remote attackers to obtain sensitive information through improper handling of HTTP response headers. It affects all users running versions up to 1.0.1. The vulnerability enables information disclosure without requiring authentication.

💻 Affected Systems

Products:
  • Summer Pearl Group Vacation Rental Management Platform
Versions: up to 1.0.1
Operating Systems: All platforms running the software
Default Config Vulnerable: ⚠️ Yes
Notes: All deployments using affected versions are vulnerable by default.

📦 What is this software?

Vacation Rental Management Platform by Summerpearlgroup

View all CVEs affecting Vacation Rental Management Platform →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers could extract sensitive configuration data, session tokens, or internal system information that could facilitate further attacks.

🟠

Likely Case

Limited information disclosure revealing system details, version information, or configuration parameters that could aid reconnaissance.

🟢

If Mitigated

Minimal impact with proper network segmentation and access controls limiting exposure to trusted sources only.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Remote exploitation without authentication makes this easily accessible to attackers.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 1.0.2

Vendor Advisory: https://summerpearlgroup.gr/spgpm/releases

Restart Required: Yes

Instructions:

1. Download version 1.0.2 from the vendor's release page. 2. Backup current installation and data. 3. Stop the application service. 4. Replace files with patched version. 5. Restart the application service. 6. Verify functionality.

🔧 Temporary Workarounds

Web Application Firewall Rule

all

Configure WAF to filter or sanitize HTTP response headers

Network Segmentation

all

Restrict access to the application to trusted networks only

🧯 If You Can't Patch

  • Implement strict network access controls to limit exposure to trusted IP addresses only
  • Deploy a web application firewall with rules to detect and block information disclosure attempts

🔍 How to Verify

Check if Vulnerable:

Check application version in admin panel or configuration files. If version is 1.0.1 or earlier, system is vulnerable.

Check Version:

Check admin panel or configuration files for version information

Verify Fix Applied:

Confirm version is 1.0.2 or later in admin panel. Test with HTTP header inspection tools to ensure no sensitive information is disclosed.

📡 Detection & Monitoring

Log Indicators:

  • Unusual HTTP requests targeting response headers
  • Multiple requests from single IPs probing for information

Network Indicators:

  • HTTP traffic patterns showing header manipulation attempts
  • Requests with unusual header parameters

SIEM Query:

source_ip=* AND (http_uri CONTAINS 'header' OR http_method=GET AND http_user_agent CONTAINS 'scanner')

📊 Metadata

CVE ID: CVE-2025-5184
CVSS v3 Score: 4.3 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
CWE: CWE-200
EPSS Score: 0.04% exploit probability (13th percentile)
Published: May 26, 2025
Last Updated: June 3, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-5184, you might also want to check these:

CVE-2025-61481 10.0

MikroTik RouterOS and SwOS expose their WebFig management interface over unencrypted HTTP by default...

Same vulnerability type (CWE-200)
CVE-2025-53624 10.0

The Docusaurus gists plugin versions before 4.0.0 expose GitHub Personal Access Tokens in client-sid...

Same vulnerability type (CWE-200)
CVE-2023-49103 10.0

This vulnerability in ownCloud's graphapi app exposes PHP configuration details (phpinfo) via a thir...

Same vulnerability type (CWE-200)