Critical SOQL Injection 0-Day Vulnerability in Salesforce Affects Millions Worldwide

Post Reply
Shane1145
Posts: 1836
Joined: Wed Sep 25, 2024 2:31 pm

Critical SOQL Injection 0-Day Vulnerability in Salesforce Affects Millions Worldwide

Post by Shane1145 »

A critical zero-day vulnerability discovered in Salesforce‘s default controller has exposed millions of user records across thousands of deployments worldwide.

The security flaw, found in the built-in aura://CsvDataImportResourceFamilyController/ACTION$getCsvAutoMap controller, allowed attackers to extract sensitive user information and document details through SOQL injection techniques.

https://cybersecuritynews.com/soql-inje ... erability/
Top
Post Reply

Return to “Web Applications”