Skip to content

Mongodb未授权访问 #26

New issue
New issue
Open
Open
Mongodb未授权访问#26
Labels
blogwooyun
@PyxYuYu

Description

@PyxYuYu
PyxYuYu
opened on Mar 26, 2016

To be close to your friend, but closer to your enemy.

0x01 Wooyun
  • 挖了一天的Mongodb未授权访问,乌云提交了10来个漏洞
  • 之前乌云忽略的漏洞,提交给补天成功了
  • 今后用Python写点自动化测试的未授权或者弱口令访问工具
    • mysql msssql oracle ftp redis mongodb

Metadata

Metadata

Assignees

No one assigned

    Labels

    blogwooyun

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions