Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Microsoft SharePoint Connector Flaw Could Have Enabled Credential Theft Across Power Platform
Malware and Vulnerabilities
February 04, 2025
The Hacker News
The vulnerability, at its core, is an instance of server-side request forgery (SSRF) stemming from the use of the "custom value" functionality within the SharePoint connector that permits an attacker to insert their own URLs as part of a flow.
Read More
Microsoft SharePoint connector
Microsoft SharePoint
Microsoft Power Platform
Credential Theft
post-exploitation activities
Publisher
Previous
Google Fixes Android Kernel Zero-Day Exploited in Attac ...
Malware and Vulnerabilities
Next
Kazakhstan to Audit Foreign Ministry After Suspected Ru ...
Breaches and Incidents
/https://cyware-ent.s3.amazonaws.com/image_bank/a299_shutterstock_2189729351.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/iStock_000084284951_Small.jpg)
