CVE-2022-27247 – onlinetolls in cdSoft Onlinetools-Smart Winhotel.MX 2021 allows an attacker to download se …

Vuln ID: CVE-2022-27247

Published:  2022-05-13  15:15:08Z

Description: onlinetolls in cdSoft Onlinetools-Smart Winhotel.MX 2021 allows an attacker to download sensitive information about any customer (e.g., data of birth, full address, mail information, and phone number) via GastKont Insecure Direct Object Reference.

Source: NVD.NIST.GOV