- Home
- Salesforce
- Salesforce Accredited B2B Commerce Developer
- Salesforce.B2B-Commerce-Developer.v2024-04-11.q87
- Question 58
Valid B2B-Commerce-Developer Dumps shared by ExamDiscuss.com for Helping Passing B2B-Commerce-Developer Exam! ExamDiscuss.com now offer the newest B2B-Commerce-Developer exam dumps, the ExamDiscuss.com B2B-Commerce-Developer exam questions have been updated and answers have been corrected get the newest ExamDiscuss.com B2B-Commerce-Developer dumps with Test Engine here:
Access B2B-Commerce-Developer Dumps Premium Version
(223 Q&As Dumps, 35%OFF Special Discount Code: freecram)
<< Prev Question Next Question >>
Question 58/87
Although Salesforce B2B Commerce and Salesforce recommend against using
"without sharing classes" whenever possible, sometimes it is unavoidable. Which three items will open up a major security hole? (3 answers)
"without sharing classes" whenever possible, sometimes it is unavoidable. Which three items will open up a major security hole? (3 answers)
Correct Answer: A,C,D
Explanation
Executing dynamic SOQL inside a without sharing class with a bind variable from PageReference.getParameters(), PageReference.getCookies(), or cc_RemoteActionContext class will open up a major security hole because these sources of input are not sanitized and can be manipulated by malicious users to inject SOQL queries that bypass the sharing rules and access data that they are not supposed to see.
For example, a user can modify the URL parameters or cookies to include a SOQL query that returns sensitive data from the database. To prevent this, it is recommended to use static SOQL or escape the bind variables before executing dynamic SOQL.
Executing dynamic SOQL inside a without sharing class with a bind variable from PageReference.getParameters(), PageReference.getCookies(), or cc_RemoteActionContext class will open up a major security hole because these sources of input are not sanitized and can be manipulated by malicious users to inject SOQL queries that bypass the sharing rules and access data that they are not supposed to see.
For example, a user can modify the URL parameters or cookies to include a SOQL query that returns sensitive data from the database. To prevent this, it is recommended to use static SOQL or escape the bind variables before executing dynamic SOQL.
- Question List (87q)
- Question 1: Which three pages should be enabled for the Guest user profi...
- Question 2: A developer needs to loop through a series of child componen...
- Question 3: Which three actions are applicable when extendinga default S...
- Question 4: What is a method to resolve if the current storefront custom...
- Question 5: Which two components in a B2B store template should a develo...
- Question 6: A developer attempts to export data from an org by launching...
- Question 7: Salesforce B2B Commerce natively provides a robots.txt file,...
- Question 8: Which two methods should a developer implement in a Lightnin...
- Question 9: For which two reasons is it preferable to extend the Salesfo...
- Question 10: A developer is trying to troubleshoot why a field is not dis...
- Question 11: A dev at Northern Trail Outfitters (NTO) exported Order Summ...
- Question 12: A developer needs to create a scheduled job in another syste...
- Question 13: A developer needs to create an event listener on a parent co...
- 2 commentQuestion 14: In which threeways can Salesforce B2B Commerce API sizing bl...
- 2 commentQuestion 15: A developer is trying to integrate a new shipping provider t...
- Question 16: What are two purposes of the Shadow DOM in a Lightning web c...
- Question 17: A Developer created a custom field that a project wants to e...
- 2 commentQuestion 18: A developer needs to make a call to a long running web servi...
- 1 commentQuestion 19: A Northern Trail Qutfitters (NTO) developer made a tile comp...
- 1 commentQuestion 20: Why is the use of a standard Visualforce control such as ape...
- Question 21: Which wire adapter should a developer use to retrieve metada...
- Question 22: Which two behaviors does a target value of lightning__FlowSc...
- Question 23: Which orders can a user view on Order List Component (Aura) ...
- Question 24: A developer is working in Visual Studio Code on a previously...
- Question 25: What is likely to happen if a developer leaves debug mode tu...
- Question 26: What are two ways a developer should ensure that a store ver...
- Question 27: Which two log levels does a developer need to include to deb...
- Question 28: When a user buys 10 units of product B, the user wants 1 uni...
- Question 29: In which three ways should useful debugging information in S...
- Question 30: Northern Trail Outfitters (NTO) wants to be able to referenc...
- Question 31: Which two aspects are applicable to Page Includes? (2 answer...
- Question 32: What are three ways to implement custom post Order processin...
- Question 33: What is true about mapping custom fields from Cart to Order ...
- Question 34: In which two ways can events fired from Lightning web compon...
- Question 35: Which two blocks of code are needed to implement a custom ge...
- Question 36: Which event is triggered within Salesforce B2B Commerce when...
- Question 37: A developer is building a custom component in Lightning web ...
- Question 38: A developer has made some changes to the products of an exis...
- Question 39: A configuration value, CO.NewOrder, is set to TRUE. What is ...
- Question 40: A developer has the task to bring some historical data into ...
- Question 41: Which Lightning web component path allows a developer to vie...
- Question 42: Northern Trail Outfitters (NTO) exports Order Summary data f...
- 1 commentQuestion 43: What interface must a developer implement to override Tax in...
- Question 44: A developer needs to import some new product data contained ...
- Question 45: What is the fastest route to establishing the data needed fo...
- Question 46: What is a valid way of referencing the global cc_api_CartExt...
- Question 47: In checkout, what event should the developer's code listen f...
- Question 48: Ursa Major is planning to implement Salesforce B2B Commerce,...
- Question 49: How should data for Lightning web components be provided?...
- Question 50: Which wire adapter should a developer use to retrieve metada...
- Question 51: Which two steps are necessary to enable Salesforce B2B Comme...
- Question 52: Northern Trail Outfitters (NTO) has a B2B Commerce store for...
- Question 53: A developer is working in Visual Studio Code on a previously...
- Question 54: Universal Containers (UC) needs to wrap a Lightning Web Comp...
- 1 commentQuestion 55: Which practice is allowed when it comes to naming a Lightnin...
- Question 56: A user wants the pricing to reflect the price values stored ...
- Question 57: Which two statements are true regarding the cc_CallContext c...
- Question 58: Although Salesforce B2B Commerce and Salesforce recommend ag...
- Question 59: In a B2B Commerce store, which three tasks must a developer ...
- Question 60: A developer is setting up a storefront from scratch. They ne...
- 1 commentQuestion 61: How should a developer get the grand total amount, including...
- Question 62: Which method is used to override when extending the Salesfor...
- Question 63: A developer is on a tight timeline and needs to implement a ...
- Question 64: While in the process of gathering requirements from a custom...
- Question 65: What is essential for a Salesforce B2B Commerce theme to sho...
- Question 66: Which wire adapter should a developer use to retrieve metada...
- Question 67: The ccUtil apex class in Salesforce B2B Commerce provides nu...
- Question 68: Which two Salesforce B2B Commerce visualforce pages must be ...
- Question 69: Which format is the custom Salesforce relationship with the ...
- Question 70: A developer exports data from an org on a standard entity wh...
- Question 71: Based on error emails flowing in, a developer suspects that ...
- Question 72: Which out of the box Salesforce B2B Commerce page can give i...
- Question 73: Which handlebars helper expression is used in Salesforce B2B...
- Question 74: Which two statement are true for Mass Order (2 answers)...
- Question 75: Which event should be triggered when user facing info, warni...
- Question 76: Where are handlebar Templates defined in the Cloudcraze mana...
- Question 77: During checkout flow customizations, a developer receives an...
- Question 78: Where is the API-based record creation generally handled in ...
- Question 79: What two kinds of queries do the methods in Salesforce B2B C...
- Question 80: In which threeways can Salesforce B2B Commerce API sizing bl...
- Question 81: Numerous flags when set, have a direct impact on the result ...
- Question 82: What is true regarding adding more Configuration Settings to...
- Question 83: A developer is creating a component to implement a custom Te...
- Question 84: What are two guidelines for logging that are used within the...
- Question 85: Which two methods from the platformResourceLoader module are...
- Question 86: Universal Containers (UC) is ready to build a tax provider c...
- Question 87: What are the templating, Javascript, and CSS frameworks what...
[×]
Download PDF File
Enter your email address to download Salesforce.B2B-Commerce-Developer.v2024-04-11.q87.pdf