The Idoit Open and Pro Edition, up to version v25, exhibit some incorrect access control issues. The default installation of the application set up five default accounts with a default password. Some of these accounts possess elevated privileges within the system.
It is strongly advisable to promptly deactivate or modify the default passwords associated with these initial accounts subsequent to the installation process.
Furthermore, the Idoit application in versions up to v25 is susceptible to additional, more grave vulnerabilities. In scenarios where an unauthorized entity gains preliminary access through the utilization of default credentials, the potential ramifications encompass an escalated compromise of the entire system.