daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update insecure-firebase-database.yaml

patch-1
Prince Chaddha 2022-05-08 17:48:27 +05:30 committed by GitHub
parent bac486a802
commit ddb9f0a8dc
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
misconfiguration/google/insecure-firebase-database.yaml
View File

@ -7,6 +7,8 @@ info:
description: If the owner of the app have set the security rules as true for both "read" & "write" an attacker can probably dump database and write his own data to firebase database.
reference:
- https://blog.securitybreached.org/2020/02/04/exploiting-insecure-firebase-database-bugbounty
metadata:
verified-by: dhiyaneshdk
tags: firebase,google,misconfig
requests: