ktr4ck3r/CVE-2025-52389

Releases0

An Insecure Direct Object Reference (IDOR) in Envasadora H2O Eireli - Soda Cristal v40.20.4 allows unauthenticated attackers to access sensitive data for other users via a crafted HTTP request.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2025-52389 ↗	Sep 8, 2025Monday, 8 September 2025, 20:15	8.8 HIGH	—
An Insecure Direct Object Reference (IDOR) in Envasadora H2O Eireli - Soda Cristal v40.20.4 allows authenticated attackers to access sensitive data for other users via a crafted HTTP request.