3 matches found
CVE-2022-27247
onlinetolls in cdSoft Onlinetools-Smart Winhotel.MX 2021 allows an attacker to download sensitive information about any customer e.g., data of birth, full address, mail information, and phone number via GastKont Insecure Direct Object Reference...
CVE-2022-27247
Affected software: cdSoft Onlinetools-Smart Winhotel.MX 2021. The vulnerability is described as an Insecure Direct Object Reference (GastKont) that permits an attacker to download sensitive customer data (e.g., date of birth, full address, email, phone). Root cause indicated as improper exposure/...
CVE-2022-27247
onlinetolls in cdSoft Onlinetools-Smart Winhotel.MX 2021 allows an attacker to download sensitive information about any customer e.g., data of birth, full address, mail information, and phone number via GastKont Insecure Direct Object Reference...