onlinetolls in cdSoft Onlinetools-Smart Winhotel.MX 2021 allows an attacker to download sensitive information about any customer (e.g., data of birth, full address, mail information, and phone number) via GastKont Insecure Direct Object Reference.
References
Link | Resource |
---|---|
https://myses.de/#about | Third Party Advisory |
https://myses.de/pdf/CVE2022-27247.pdf | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-05-13T14:25:12
Updated: 2022-05-13T14:25:12
Reserved: 2022-03-18T00:00:00
Link: CVE-2022-27247
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-05-13T15:15:08.940
Modified: 2022-05-24T16:03:58.487
Link: CVE-2022-27247
JSON object: View
Redhat Information
No data.
CWE