Security Advisory
CVE-2025-52389
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
An Insecure Direct Object Reference (IDOR) in Envasadora H2O Eireli - Soda Cristal v40.20.4 allows authenticated attackers to access sensitive data for other users via a crafted HTTP request.