From 212072fad214c0f259424de93260b3caadf329f9 Mon Sep 17 00:00:00 2001 From: Prince Chaddha Date: Tue, 31 Aug 2021 13:31:48 +0530 Subject: [PATCH 1/2] Update unauthenticated-mongo-express.yaml --- misconfiguration/unauthenticated-mongo-express.yaml | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/misconfiguration/unauthenticated-mongo-express.yaml b/misconfiguration/unauthenticated-mongo-express.yaml index 75cdbc0890..85c6224918 100644 --- a/misconfiguration/unauthenticated-mongo-express.yaml +++ b/misconfiguration/unauthenticated-mongo-express.yaml @@ -1,4 +1,4 @@ -id: unauthenticated-mongo-express.yaml +id: unauthenticated-mongo-express info: name: Mongo Express Unauthenticated @@ -12,12 +12,15 @@ requests: path: - '{{BaseURL}}' - '{{BaseURL}}/mongo-express/' + - '{{BaseURL}}/db/admin/system.users' matchers-condition: and matchers: - type: word words: - 'Home - Mongo Express' + - 'system.users - Mongo Express' + condition: or - type: status status: - 200 From bec1c542cd88e29bba219d8466eb84610ffc74c8 Mon Sep 17 00:00:00 2001 From: Prince Chaddha Date: Tue, 31 Aug 2021 13:32:56 +0530 Subject: [PATCH 2/2] Update unauthenticated-mongo-express.yaml --- misconfiguration/unauthenticated-mongo-express.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/misconfiguration/unauthenticated-mongo-express.yaml b/misconfiguration/unauthenticated-mongo-express.yaml index 85c6224918..da55b10013 100644 --- a/misconfiguration/unauthenticated-mongo-express.yaml +++ b/misconfiguration/unauthenticated-mongo-express.yaml @@ -2,7 +2,7 @@ id: unauthenticated-mongo-express info: name: Mongo Express Unauthenticated - author: dhiyaneshDK + author: dhiyaneshDK,b0rn2r00t severity: high reference: https://www.exploit-db.com/ghdb/5684 tags: mongo,unauth