#experience-cloud-exploitation

[ follow ]
#salesforce-security #misconfiguration-vulnerabilities #aurainspector-tool #guest-user-permissions
Information security
fromThe Hacker News
5 hours ago

Threat Actors Mass-Scan Salesforce Experience Cloud via Modified AuraInspector Tool

Threat actors are exploiting misconfigured Salesforce Experience Cloud sites using a modified AuraInspector tool to extract sensitive data from overly permissive guest user profiles.
[ Load more ]