Unrated severityNVD Advisory· Published Oct 31, 2025· Updated Nov 3, 2025
CVE-2025-63563
CVE-2025-63563
Description
Summer Pearl Group Vacation Rental Management Platform prior to v1.0.2 does not properly invalidate active user sessions after a password change. This allows an attacker with a valid session token to maintain access to the account even after the legitimate user changes their password.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: <1.0.2
Patches
Vulnerability mechanics
News mentions
0No linked articles in our index yet.