CVE-2022-27247

2022-05-1314:25:12

mitre

www.cve.org

5.4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

30.1%

JSON

onlinetolls in cdSoft Onlinetools-Smart Winhotel.MX 2021 allows an attacker to download sensitive information about any customer (e.g., data of birth, full address, mail information, and phone number) via GastKont Insecure Direct Object Reference.

References

myses.de/#about

myses.de/pdf/CVE2022-27247.pdf