How to protect myself against "MongoInjection"

Question

How to protect myself against "MongoInjection"

Navigation

#1 by (2 votes)

3

Use MongoDB in a front-end application that runs on Node.JS through the Express framework.

I would like to know how to create protections against MongoDB "Injection" (similar to sql injection ).

sql-injection mongodb vulnerabilidade

asked by anonymous 27.02.2018 / 03:30

1 answer

How do I import data from a spreadsheet in excel (csv) into an HTML table? Make responsive iframe content (Google DFP)

score 2 · Accepted Answer

I found the following descriptive in the SOen thread and found it interesting to share in your question:

The point is convert and interpret input data

MongoDB avoids potential problems of this type by not performing data conversions. It does not perform conversions in text structures to figure out what to do, so there is no possibility of misinterpretation of the data ...

This reference has an indicative link about supplemental reading to assist in writing safe code (if it is a concern).

Source: How does MongoDB avoid SQL injection mess?