CVE-2025-52389

Publication date

2025-09-08 00:00:00

Family

mitre

State

PUBLISHED

Description

An Insecure Direct Object Reference (IDOR) in Envasadora H2O Eireli - Soda Cristal v40.20.4 allows authenticated attackers to access sensitive data for other users via a crafted HTTP request.