2022-05-08 12:17:11 +00:00
id : insecure-firebase-database
info :
name : Insecure Firebase Database
author : rafaelwdornelas
severity : high
description : If the owner of the app have set the security rules as true for both "read" & "write" an attacker can probably dump database and write his own data to firebase database.
reference :
- https://blog.securitybreached.org/2020/02/04/exploiting-insecure-firebase-database-bugbounty
2022-05-08 12:18:27 +00:00
metadata :
2022-05-09 09:43:18 +00:00
verified : true
2023-10-14 11:27:55 +00:00
max-request : 2
tags : firebase,google,misconfig,intrusive
2022-05-08 12:17:11 +00:00
2023-04-27 04:28:59 +00:00
http :
2022-05-08 12:17:11 +00:00
- raw :
- |
PUT /{{randstr}}.json HTTP/1.1
Host : {{Hostname}}
Content-Type : application/json
{"id" : "insecure-firebase-database" }
- |
GET /{{randstr}}.json HTTP/1.1
Host : {{Hostname}}
matchers-condition : and
matchers :
- type : word
part : body_2
words :
- '{"id":"insecure-firebase-database"}'
2022-12-14 19:25:43 +00:00
- type : word
part : header
words :
- "application/json"
2022-05-08 12:17:11 +00:00
- type : status
status :
- 200
2023-11-27 10:10:24 +00:00
# digest: 490a00463044022006307177d5a8f35ea74d600e59a96347a9669a2b7f574e9e502e6bd94248af130220598d141ee54fae17707f02237e77ba15f5feb907d89ee44328a23c7905eb0b99:922c64590222798bb761d5b6d8e72950