"Hey guys, I recently stumbled upon a MongoDB instance left exposed online (oops, no passwords ) and decided to dig deeper. It's crazy how many vulnerabilities were present, including some outdated drivers and a few known authentication bypasses. Anyone else dealt with MongoDB security issues or wanna share some war stories?"
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.
You should upgrade or use an alternative browser.
"Hacking MongoDB: A Deep Dive into Security Vulnerabilities"
- Thread starter alec_bk
- Start date
OdderLitium
New member
- Joined
- Jan 23, 2007
- Messages
- 1
- Reaction score
- 0
"Just finished reading through the thread and I gotta say, some of these MongoDB vulns are real easy to exploit if you don't have proper security in place. Any devs out there using MongoDB in production, make sure you're keeping those patches up to date. Don't wanna be the one dealing with a data breach"
lightpoint
Member
- Joined
- Jul 3, 2015
- Messages
- 6
- Reaction score
- 4
Thoughts on best practices?