NoSQL injection
Description
The system generates NoSQL queries dynamically and without validating untrusted inputs.
Impact
Obtain information from the environment by means of malicious statements.
Recommendation
Validate and escape data that will be included in sentences generated dynamically.
Threat
Anonymous attacker from the Internet.
Expected Remediation Time
⏱️ 45 minutes.