Elastisearch NoSQL injection implications?
I’m testing a web application and have found a parameter that is vulnerable to NoSQL injection (Elastisearch). The parameter is named username and is the only parameter in the HTTP Request. As a response, I just get a true/fa… Continue reading Elastisearch NoSQL injection implications?