Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Data Theft Risk in Salesforce by Manipulating Public Links
Malware and Vulnerabilities
September 18, 2024
Varonis
The vulnerability was related to the undocumented Salesforce Aura API and SOQL subqueries, allowing a blind SOQL injection attack to retrieve customer information, including personally identifiable information (PII).
Read More
data theft
Salesforce
Salesforce Permission Sets
Public Links
Salesforce Public Links
Publisher
Previous
Valid Accounts Remain Top Access Point for Critical Inf ...
Govt., Critical Infrastructure
Next
US Indicts Chinese National for Phishing for NASA Tech
Incident Response, Learnings