VYPR
Unrated severityNVD Advisory· Published Jan 24, 2026· Updated Apr 29, 2026

CVE-2026-22582

CVE-2026-22582

Description

Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') vulnerability in Salesforce Marketing Cloud Engagement (MicrositeUrl module) allows Web Services Protocol Manipulation. This issue affects Marketing Cloud Engagement: before January 21st, 2026.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

1