CVE-2025-63563

{"id": "CVE-2025-63563", "cveTags": [], "metrics": {}, "published": "2025-10-31T21:15:44.713", "references": [{"url": "https://github.com/Stolichnayer/Summer-Pearl-Group-Insufficient-Session-Expiration", "source": "cve@mitre.org"}], "vulnStatus": "Received", "descriptions": [{"lang": "en", "value": "Summer Pearl Group Vacation Rental Management Platform prior to v1.0.2 does not properly invalidate active user sessions after a password change. This allows an attacker with a valid session token to maintain access to the account even after the legitimate user changes their password."}], "lastModified": "2025-10-31T21:15:44.713", "sourceIdentifier": "cve@mitre.org"}