onlinetolls in cdSoft Onlinetools-Smart Winhotel.MX 2021 allows an attacker to download sensitive information about any customer (e.g., data of birth, full address, mail information, and phone number) via GastKont Insecure Direct Object Reference.Referenceshttps://myses.de/#abouthttps://myses.de/pdf/CVE2022-27247.pdf
