Tech & Gadgets

Thousands of Oracle NetSuite ERP websites discovered leaking personal customer data

Researchers have discovered a vulnerability in Oracle NetSuite’s SuiteCommerce e-commerce platform that could allow attackers to steal sensitive data from websites.

A report from AppOmni revealed that the vulnerability stems from misconfigured access controls in SuiteCommerce instances, specifically within custom record types (CRTs) — tables created by SuiteCommerce’s enterprise customers.

Related Articles

Leave a Reply

Your email address will not be published. Required fields are marked *

Back to top button