Salesforce Security Bug: Expired Domain in CSP Header

AI Dynamics

Global AI News Aggregator

Salesforce Security Bug: Expired Domain in CSP Header

–

27 September 2025 1h30

Wrote more about the Salesforce bug on my blog – one key detail is that Salesforce were using a CSP header to prevent loading images from untrusted domains… but one of their allow-listed domains had expired!

→ View original post on X — @simonw,

27 September 2025

AI Dynamics

Salesforce Security Bug: Expired Domain in CSP Header

Commentaires

Leave a Reply Cancel reply

MORE ARTICLES

Cheaper exploration at scale remains advantageous despite no new exploits

Gold Status Experience Brings Satisfaction

Using ChatGPT for Essay Feedback and Improvement

Intelligence Gone Wrong: Cheating Despite Having Correct Answer