2025-10-16 07:59:06
INCIBE
PUBLISHED
Insecure direct object reference (IDOR) vulnerability in Sergestecs Exito v8.0. This vulnerability allows an attacker to access data belonging to other customers through the id parameter in /admin/ticket_a4.php.